You are viewing a plain text version of this content. The canonical link for it is here.
Posted to users@tomcat.apache.org by Pfingstl Gernot <ge...@stmk.gv.at> on 2003/12/10 23:45:57 UTC
GlobalNamingResources
If I define a resource in <GlobalNamingResources> (in server.xml) I can use this resource in my web-application only if I use <ResourceLink> in my context. So it seems to me it isn't possible to use a resource defined in <GlobalNamingResources> unless I permit the use with a <ResourceLink> in the context or the engine.
Is this right??
Because I didn't find a sentence about this in the tomcat docs!
Is this behaviour specified somewhere or is it subject to change?
This behavoiur is important to me, becaue I will explicitely permit (or deny) the access to a global resource per context. Its a security problem.
Thanks
Gernot
---------------------------------------------------------------------
To unsubscribe, e-mail: tomcat-user-unsubscribe@jakarta.apache.org
For additional commands, e-mail: tomcat-user-help@jakarta.apache.org
Re: GlobalNamingResources
Posted by Remy Maucherat <re...@jboss.org>.
Pfingstl Gernot wrote:
> If I define a resource in <GlobalNamingResources> (in server.xml) I
> can use this resource in my web-application only if I use
> <ResourceLink> in my context. So it seems to me it isn't possible to
> use a resource defined in <GlobalNamingResources> unless I permit the
> use with a <ResourceLink> in the context or the engine.
>
> Is this right??
Indeed. You can add the ResourceLink in a DefaultContext with 5.0, for
convinience, if, for example, you want to allow it in a whole virtual
host. I don't remember if I ported the feature and if it's also in 4.1.29.
> Is this behaviour specified somewhere or is it subject to change?
No, it's not subject to a change. I think it's implied: nowhere it is
written that global resources define stuff in the webapp naming contexts.
> This behavoiur is important to me, becaue I will explicitely permit
> (or deny) the access to a global resource per context. Its a security
> problem.
That's the reason behind the ResourceLink.
--
xxxxxxxxxxxxxxxxxxxxxxxxxxxxx
Rémy Maucherat
Senior Developer & Consultant
JBoss Group (Europe) SàRL
xxxxxxxxxxxxxxxxxxxxxxxxxxxxx
---------------------------------------------------------------------
To unsubscribe, e-mail: tomcat-user-unsubscribe@jakarta.apache.org
For additional commands, e-mail: tomcat-user-help@jakarta.apache.org