I'm looking for instructions on how to use RemoteAddrValve to protect web applications at the context level.
Using JBoss 4.0.2, two HTTP connectors - one LAN one Internet. 10.254.251.20:9006 & a.b.c.d:80 I want to allow access to the web-console, jmx, etc., and a custom admin console web-app from the LAN (remote-address will be 10.254.*) but disable it for Internet remote clients. I've looked at Wiki articles and the Admin docs; they talk about it being possible at the Tomcat container level and simply link to Tomcat docs. http://wiki.jboss.org/wiki/Wiki.jsp?page=LimitAccessToCertainClients Following the instructions in those docs to create a per-context XML configuration hasn't met with success so far. I tried adding a context.xml to jboss/server/all/work/localhost/web-console/ <Valve className="org.apache.catalina.valves.RemoteHostValve" allow="10.254.*.*" deny "*" / > But it doesn't seem to be used. View the original post : http://www.jboss.org/index.html?module=bb&op=viewtopic&p=3881859#3881859 Reply to the post : http://www.jboss.org/index.html?module=bb&op=posting&mode=reply&p=3881859 ------------------------------------------------------- SF.Net email is sponsored by: Discover Easy Linux Migration Strategies from IBM. Find simple to follow Roadmaps, straightforward articles, informative Webcasts and more! Get everything you need to get up to speed, fast. http://ads.osdn.com/?ad_id=7477&alloc_id=16492&op=click _______________________________________________ JBoss-user mailing list [email protected] https://lists.sourceforge.net/lists/listinfo/jboss-user
