You are right. What I intend to do is prevent hot linking. My webapp, is working as a REST webservice.
So I would like to have tomcat reply only when requests come from specific sites. thanks 2011/10/31 André Warnier <a...@ice-sa.com> > Ricardo Bayley wrote: > >> Hi folks, >> >> I am trying to filter access to my webapp by the HTTP_REFERER >> I thought this could be achieved with the Valve Componenent using the >> Remote Host Filter such as >> >> <Valve className="org.apache.**catalina.valves.**RemoteHostValve" allow=" >> sub.mydomain.com"/> >> <Valve className="org.apache.**catalina.valves.**RemoteHostValve" allow=" >> mydomain.com"/> >> >> I am not have in success. Can this be achieved or should I use Apache >> httpd >> to proxy requests? >> >> What exactly do you want to filter on ? > The "referrer" is one thing (it's the browser page currently displayed, in > which the link was clicked to trigger the current request). > The hostname from which the request comes is another. > The host IP address from which the request comes is a third possibility. > (and filtering on the hostname is "expensive", because it requires DNS > lookups) > > > ------------------------------**------------------------------**--------- > To unsubscribe, e-mail: > users-unsubscribe@tomcat.**apache.org<users-unsubscr...@tomcat.apache.org> > For additional commands, e-mail: users-h...@tomcat.apache.org > >
