Re: Possible to restrict acess to servlets with HTACCESS?

Wed, 16 Feb 2000 08:05:05 -0800 

----------------------------------------------------------------
BEFORE YOU POST, search the faq at <http://java.apache.org/faq/>
WHEN YOU POST, include all relevant version numbers, log files,
and configuration files.  Don't make us guess your problem!!!
----------------------------------------------------------------

The way in which I restrict access to our servlets is to use a <Location> directive
in the jserv.conf file.  Something like this:

ApJServMount /servlet /root
<Location /servlet>
order deny,allow
deny from all
allow from localhost
allow from .requisite.com
AuthName "auth"
AuthType "basic"
AuthGroupFile "groups"
AuthUserFile "passwd"
require group admin
Satisfy all
</Location>

It restricts all access to servlets in a particular zone by restricting access to
the mount point.  I don't know about getting the username from the access log file.

James


Robert McGovern wrote:

> ----------------------------------------------------------------
> BEFORE YOU POST, search the faq at <http://java.apache.org/faq/>
> WHEN YOU POST, include all relevant version numbers, log files,
> and configuration files.  Don't make us guess your problem!!!
> ----------------------------------------------------------------
>
> Hi, I was wondering if it is possible to restrict access to servlets by
> setting up a .htacess file in the Servlets directory.
>
> What I want to do is to pick up the remote user name, however when I run
> the SnoopServlet that comes with JSDK2.0, the remote user name says
> <none>.
>
> I have restricted access to other parts of my site, that works
> fine (docs area, cgi-bin) . I get asked for authentication and in the
> access.log any requested to pages in that directory send the user name.
> If I go the servlet directory and run a servlet, the entry in access.log
> does not pass the username through
>



--
--------------------------------------------------------------
Please read the FAQ! <http://java.apache.org/faq/>
To subscribe:        [EMAIL PROTECTED]
To unsubscribe:      [EMAIL PROTECTED]
Archives and Other:  <http://java.apache.org/main/mail.html>
Problems?:           [EMAIL PROTECTED]

Reply via email to