Return-Path: 
 <tomcat-user-return-63899-qmlist-jakarta-archive-tomcat-user=nagoya.apache.org@jakarta.apache.org>
Delivered-To: apmail-jakarta-tomcat-user-archive@apache.org
Received: (qmail 59466 invoked from network); 13 May 2003 23:27:09 -0000
Received: from exchange.sun.com (192.18.33.10)
  by daedalus.apache.org with SMTP; 13 May 2003 23:27:09 -0000
Received: (qmail 26822 invoked by uid 97); 13 May 2003 23:29:20 -0000
Delivered-To: qmlist-jakarta-archive-tomcat-user@nagoya.betaversion.org
Received: (qmail 26815 invoked from network); 13 May 2003 23:29:20 -0000
Received: from daedalus.apache.org (HELO apache.org) (208.185.179.12)
  by nagoya.betaversion.org with SMTP; 13 May 2003 23:29:20 -0000
Received: (qmail 58033 invoked by uid 500); 13 May 2003 23:26:58 -0000
Mailing-List: contact tomcat-user-help@jakarta.apache.org; run by ezmlm
Precedence: bulk
List-Unsubscribe: <mailto:tomcat-user-unsubscribe@jakarta.apache.org>
List-Subscribe: <mailto:tomcat-user-subscribe@jakarta.apache.org>
List-Help: <mailto:tomcat-user-help@jakarta.apache.org>
List-Post: <mailto:tomcat-user@jakarta.apache.org>
List-Id: "Tomcat Users List" <tomcat-user.jakarta.apache.org>
Reply-To: "Tomcat Users List" <tomcat-user@jakarta.apache.org>
Delivered-To: mailing list tomcat-user@jakarta.apache.org
Received: (qmail 58022 invoked from network); 13 May 2003 23:26:57 -0000
Received: from sid.armstrong.com (204.74.20.252)
  by daedalus.apache.org with SMTP; 13 May 2003 23:26:57 -0000
Received: from joedog.org (pcp01470022pcs.lncstr01.pa.comcast.net
 [68.82.237.147])
	by sid.armstrong.com (8.12.8p1/8.12.8) with ESMTP id h4DNMqM0029752
	for <tomcat-user@jakarta.apache.org>; Tue, 13 May 2003 18:22:52 -0500
Message-ID: <3EC17F46.8020508@joedog.org>
Date: Tue, 13 May 2003 19:27:02 -0400
From: Tim Funk <funkman@joedog.org>
Organization: Human being
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 5.0; en-US;
 rv:1.3) Gecko/20030312
X-Accept-Language: en-us, en, es-mx, de, sv
MIME-Version: 1.0
To: Tomcat Users List <tomcat-user@jakarta.apache.org>
Subject: Re: combining remote address filter and basic authentication
References: <5.2.0.9.2.20030513152054.056e8560@mail.qrc.com>
In-Reply-To: <5.2.0.9.2.20030513152054.056e8560@mail.qrc.com>
Content-Type: text/plain; charset=us-ascii; format=flowed
Content-Transfer-Encoding: 7bit
X-Spam-Rating: daedalus.apache.org 1.6.2 0/1000/N
X-Spam-Rating: daedalus.apache.org 1.6.2 0/1000/N

AFAIK, there is no elegant way to do this. But but probably want to use a 
filter. The filter will check if the IP range is valid. If the ip range if 
not valid, it will look for the WWW-Authenticate (?) header and decode it 
according to the RFC. If there is no WWW-Authenticate - send a 401 redirect 
challenge back to the client. Google is your firend with respect to the 
topics above.

-Tim


Vladimer Shioshvili wrote:
> What I am trying to do is combine remote address filter and basic 
> authentication in the following way:
> 
> to allow access to anyone with ip address10.*.*.* and for the rest to 
> use basic authentication using users.xml file.
> 
> Has anyone done anything like this? I do mostly form based 
> authentication and this is something new I am facing..
> 
> Thanks,
> Vlad
>  


---------------------------------------------------------------------
To unsubscribe, e-mail: tomcat-user-unsubscribe@jakarta.apache.org
For additional commands, e-mail: tomcat-user-help@jakarta.apache.org