Just hoping someone can help me deal with this question...
In the application I'm developing I need to restrict access to a bunch of
binary files (sound recordings). Each user should only be able to download
their own files. Files and users will be added and deleted dynamically. The
realm based security in Tomcat doesn't seem to support the security model I
require (creating a new role for every single user and associating that with
their files isn't really practical). Does anyone have an idea as to how
acheive the required security within a Tomcat framework.
Thanks,
Hamish
