tomcat-users mailing list archives

Site index · List index
Message view « Date » · « Thread »
Top « Date » · « Thread »
From Jurn Ho <j...@magicmonster.com>
Subject Re: security-constraint in conf/web.xml
Date Wed, 04 Mar 2009 16:01:03 GMT
Christopher Schultz wrote:
> -----BEGIN PGP SIGNED MESSAGE-----
> Hash: SHA1
>
> Chuck,
>
> On 3/4/2009 10:01 AM, Caldarale, Charles R wrote:
>   
>>> From: Jurn Ho [mailto:jurn@magicmonster.com]
>>> Subject: Re: security-constraint in conf/web.xml
>>>
>>> ok, is there an easy way to require authentication to access a
>>> particular webapp, without modifying the war file?
>>>       
>> You can try using this:
>> http://securityfilter.sourceforge.net/
>>     
>
> sf is expected to be used from within a web application, so it has to be
> deployed along with the webapp. So, the WAR file would have to be
> modified in this case.
>
> To the OP: what's wrong with modifying the deployment descriptor of your
> webapp in order to .... describe the deployment of your webapp?
>   
Nothing wrong with that, it makes sense.
We had a request from a client to require authentication on a webapp 
they are testing out. On production we don't want the authentication.
If we could keep the wars exactly the same it would simplify things for 
operations.

Jurn

> - -chris
> -----BEGIN PGP SIGNATURE-----
> Version: GnuPG v1.4.9 (MingW32)
> Comment: Using GnuPG with Mozilla - http://enigmail.mozdev.org
>
> iEYEARECAAYFAkmunGYACgkQ9CaO5/Lv0PDH7gCfeXg8Jk5tbdJfrLlpCPDg6iy3
> 5YgAn3IE6GVwEzPCU/XDdjdPZ/JRtMBP
> =blEV
> -----END PGP SIGNATURE-----
>
> ---------------------------------------------------------------------
> To unsubscribe, e-mail: users-unsubscribe@tomcat.apache.org
> For additional commands, e-mail: users-help@tomcat.apache.org
>
>
>   


Mime
  • Unnamed multipart/alternative (inline, None, 0 bytes)
View raw message