You are viewing a plain text version of this content. The canonical link for it is here.
Posted to users@tomcat.apache.org by "Caldarale, Charles R" <Ch...@unisys.com> on 2008/06/13 22:43:58 UTC
RE: allow access without auth to app from several ip ranges , but
leaveauth from any other hosts
> From: Alex Mestiashvili
> [mailto:alexander.mestiashvili@biotec.tu-dresden.de]
> Subject: allow access without auth to app from several ip
> ranges , but leaveauth from any other hosts
>
> I have basic authentication for my tomcat application .
> Now I want , allow access without authentication to this app from
> several ip ranges , but leave auth from any other hosts .
Not sure if this will do it yet, but take a look at this package:
http://sourceforge.net/projects/securityfilter/
Despite the last release date of 2004, it is now under active development again.
- Chuck
THIS COMMUNICATION MAY CONTAIN CONFIDENTIAL AND/OR OTHERWISE PROPRIETARY MATERIAL and is thus for use only by the intended recipient. If you received this in error, please contact the sender and delete the e-mail and its attachments from all computers.
---------------------------------------------------------------------
To start a new topic, e-mail: users@tomcat.apache.org
To unsubscribe, e-mail: users-unsubscribe@tomcat.apache.org
For additional commands, e-mail: users-help@tomcat.apache.org
Re: allow access without auth to app from several ip ranges , but
leaveauth from any other hosts
Posted by Christopher Schultz <ch...@christopherschultz.net>.
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1
Chuck,
Caldarale, Charles R wrote:
|> From: Alex Mestiashvili
|> [mailto:alexander.mestiashvili@biotec.tu-dresden.de]
|> Subject: allow access without auth to app from several ip
|> ranges , but leaveauth from any other hosts
|>
|> I have basic authentication for my tomcat application .
|> Now I want , allow access without authentication to this app from
|> several ip ranges , but leave auth from any other hosts .
|
| Not sure if this will do it yet, but take a look at this package:
| http://sourceforge.net/projects/securityfilter/
Nope, we don't support that -- at least not directly. Of course, as
Filip suggests, you could always write your own realm (for either sf or TC).
| Despite the last release date of 2004, it is now under active
development again.
The 2004 code is also still just as good as it was in 2004. Not much has
changed in the servlet spec. ;)
My suggestion would be to deploy the application multiple times, and use
a RemoteAddressValve for those IP addresses which do not require
authentication (and, of course, remove the appropriate configuration
from web.xml for those copies of the application).
- -chris
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.9 (MingW32)
Comment: Using GnuPG with Mozilla - http://enigmail.mozdev.org
iEYEARECAAYFAkhS4AIACgkQ9CaO5/Lv0PA3XQCfWjWwqG4lDl77DewufS9m2xBB
NcgAoKbaXZhOIGV7GKt5lHPuNmlNswhJ
=hIW+
-----END PGP SIGNATURE-----
---------------------------------------------------------------------
To start a new topic, e-mail: users@tomcat.apache.org
To unsubscribe, e-mail: users-unsubscribe@tomcat.apache.org
For additional commands, e-mail: users-help@tomcat.apache.org