tomcat-dev mailing list archives

Site index · List index
Message view « Date » · « Thread »
Top « Date » · « Thread »
Subject DO NOT REPLY [Bug 45052] New: Provide read only access for certain role in Manager webapp
Date Wed, 21 May 2008 07:35:59 GMT

           Summary: Provide read only access for certain role in Manager
           Product: Tomcat 5
           Version: 5.5.26
          Platform: All
        OS/Version: All
            Status: NEW
          Severity: enhancement
          Priority: P2
         Component: Webapps:Manager

The current Manager webapp provides functionality to change settings. However,
in many cases users are allowed to view Tomcat settings but are not allowed to
change them. This tool is an excellent way of providing detailed information,
but access is not granted for read only usage because it is not possible to
easily configure this.

Please allow an 'admin-read-only' kind of role to have access to the Manager in
a read only mode. Name of the role is to be decided by development community
but 'audit' would cover it sufficiently.

Actions like "Start", "Stop", "Reload", "Undeploy should not appear when a user
with this read only role is logged in. Also the deploy form should not be

Implementing this enhancement will lead to more satisfied use of Tomcat,
especially in complex and overly protected environments where this read only
mode (where normal admin mode is not allowed) enable better access into
configuration settings.

The same request has been made for the Administration Tool webapp.

Configure bugmail:
------- You are receiving this mail because: -------
You are the assignee for the bug.

To unsubscribe, e-mail:
For additional commands, e-mail:

View raw message