Depending on your needs, the simple solution might be to write a servlet filter and define it in web.xml in the tomcat deployment (tomcatXX.sar/web.xml. A filter defined here will be be in the chain for every incoming request. That filter could just issue a 401 if the remote address is not that of the local box.
Too bad Tomcat doesn't have ACL config directives like Apache. That would be another easy way to solve this. Mike View the original post : http://www.jboss.org/index.html?module=bb&op=viewtopic&p=3854177#3854177 Reply to the post : http://www.jboss.org/index.html?module=bb&op=posting&mode=reply&p=3854177 ------------------------------------------------------- This SF.Net email is sponsored by: Sybase ASE Linux Express Edition - download now for FREE LinuxWorld Reader's Choice Award Winner for best database on Linux. http://ads.osdn.com/?ad_id=5588&alloc_id=12065&op=click _______________________________________________ JBoss-user mailing list [EMAIL PROTECTED] https://lists.sourceforge.net/lists/listinfo/jboss-user
