You are right. What I intend to do is prevent hot linking. My webapp, is working as a REST webservice.
So I would like to have tomcat reply only when requests come from specific sites. thanks 2011/10/31 André Warnier <[email protected]> > Ricardo Bayley wrote: > >> Hi folks, >> >> I am trying to filter access to my webapp by the HTTP_REFERER >> I thought this could be achieved with the Valve Componenent using the >> Remote Host Filter such as >> >> <Valve className="org.apache.**catalina.valves.**RemoteHostValve" allow=" >> sub.mydomain.com"/> >> <Valve className="org.apache.**catalina.valves.**RemoteHostValve" allow=" >> mydomain.com"/> >> >> I am not have in success. Can this be achieved or should I use Apache >> httpd >> to proxy requests? >> >> What exactly do you want to filter on ? > The "referrer" is one thing (it's the browser page currently displayed, in > which the link was clicked to trigger the current request). > The hostname from which the request comes is another. > The host IP address from which the request comes is a third possibility. > (and filtering on the hostname is "expensive", because it requires DNS > lookups) > > > ------------------------------**------------------------------**--------- > To unsubscribe, e-mail: > users-unsubscribe@tomcat.**apache.org<[email protected]> > For additional commands, e-mail: [email protected] > >
