tomcat-users mailing list archives

Site index · List index
Message view « Date » · « Thread »
Top « Date » · « Thread »
From Christopher Schultz <ch...@christopherschultz.net>
Subject Re: Re-opening the browser
Date Tue, 12 Aug 2008 13:54:01 GMT
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

Mark,

Mark Thomas wrote:
|> Many of securityfilter's users use it merely because it allows
|> drive-by logins. We're happy to have them (!), but this seems like
|> a reasonable feature to have in the core of Tomcat.
|
| Given there is a demand for this, adding it as an option to the Form
| Auth valve seems reasonable to me. As ever, patches are always welcome
| on Bugzilla and this looks like a simple one although care will need to
| be taken on the error handling.

Actually, I am working on re-architecting securityfilter a bit so that
it can be used outside of it's current filter-only implementation. The
goal is to make it possible to write it as a Tomcat Valve, and then
possibly have Tomcat use securityfilter as its authentication and
authorization mechanism.

Since the last release, the servlet spec has changed somewhat (last
release mostly covered 2.3 spec), so I'm also working on making it as
spec-compliant as possible.

Thanks,
- -chris
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.9 (MingW32)
Comment: Using GnuPG with Mozilla - http://enigmail.mozdev.org

iEYEARECAAYFAkihlfkACgkQ9CaO5/Lv0PCiSwCfXQPdO6RfVWV7j05OfrgGcx5i
rCkAn3xq8gCrwfBwpc3MFaGJQPLwRcuJ
=BfZs
-----END PGP SIGNATURE-----

---------------------------------------------------------------------
To start a new topic, e-mail: users@tomcat.apache.org
To unsubscribe, e-mail: users-unsubscribe@tomcat.apache.org
For additional commands, e-mail: users-help@tomcat.apache.org


Mime
View raw message