One approach is to use the request filters capability that is available
with Tomcat 4. This is documented in the Server Configuration Reference
portion of the included documentation, under "Special Features" on the
Context page. This is available online at:
http://jakarta.apache.org/tomcat/tomcat-4.0-doc/config/context.html
If you put an "allow" request filter that only allows connections from
where you want, anyone else will get a "forbidden" error back. Placing
the request filter nexted inside a <Context> entry for the manager webapp
will apply this filter *only* to the manager webapp, and will not disrupt
access to your other webapps from remote locations.
Craig
On Mon, 24 Sep 2001 [EMAIL PROTECTED] wrote:
> Date: Mon, 24 Sep 2001 21:53:52 -0700 (PDT)
> From: [EMAIL PROTECTED]
> Reply-To: [EMAIL PROTECTED]
> To: [EMAIL PROTECTED]
> Subject: Limit access to manager app?
>
> Is there a way to prevent remote users from accessing the /manager/
> application? I know it's protected with a username/password, but is it
> possible to limit access to that to local access only (from the machine
> where tomcat resides only)? If so, how?
>
> Thank you.
>
>
>
>
>
> _______________________________________________________
> http://inbox.excite.com
>
>
>
