Zsolt Koppany wrote:
> Hi,
>
> is it possible to add authentication such as JDBCRealm dynamically? I
> would like to add authentication for example only when the request comes
> from outside of the company.
>
Container-managed security is normally based on matching the Request URI against
the patterns defined in your security constraints, not on where the request came
from. You would need to write a custom RequestInterceptor (Tomcat 3.x) or Valve
(Tomcat 4.x) to impose this kind of a rule.
> --
> Zsolt Koppany
Craig McClanahan
