In an attempt, possibly misguided, to try avoid using securityfilter, I'm
trying to write a valve to bypass the ssl authentication requirements of a
service based on remote host addr.
I've implemented a LocalValve that extends ValveBase and implements Valve.
Given that I must implement this:
public void invoke(Request arg0, Response arg1) throws IOException,
ServletException {
I assume that the Response arg contains some element that will eventually
lead me to the role?
It's not immediately obvious how to get at the role form the Response.
Does anyone know the object navigation path to get at this? Response ->
something -> .... -> something else -> role
...or am I completely off in left field and should scrap this before someone
gets hurt and just use securityfilter?
-Bruce
