I need to treat my clients differently depending on where they came from. I need to trust all requests coming locally (i.e. from 127.0.0.1/localhost) and not require them to authentication. However all external requests need to go through authentication. Is there a way to configure Realms in Tomcat to accommodate this?
Is there another way to achieve this, i.e. without using Realms or missing valve/filters with Realms? -Ajay
