tomcat-users mailing list archives

Site index · List index
Message view « Date » · « Thread »
Top « Date » · « Thread »
From Dave Pawson <>
Subject Re: TC6 ${CATALINA_HOME}/conf/web.xml Is this the place to constrain the mime type?
Date Fri, 06 Feb 2009 16:06:42 GMT
2009/2/6 Robert Koberg <>:

>>> Which is a good reason not to use a valve.  Unless you need access to
>>> Tomcat internals, use a filter.
>> ? Unclear why Charles?
>> To make it 'filter' all server traffic?
>> AFAIK I don't need access to any internals.
> You seem to be making this much more complicated than it needs to be. First,
> if you really need your templates to be secure, this won't solve the problem
> because someone can easily duplicate your client. And if you don't /really/
> need it secure, why do it?

Only one aspect of security Rob.
As needed I'll look at others later.
Can you suggest alternatives to achieve what I want, rather than something else?

> If you do need it secure, why not just use a security constraint. If there
> are just a few people that need to access the templates, you could use the
> default tomcat-users.xml setup - easy.

Not what I'm asking for.


Dave Pawson
Docbook FAQ.

To unsubscribe, e-mail:
For additional commands, e-mail:

View raw message