Hi list. What options do I have if I want to use IP based security
behind an Apache proxy?
I want to use <ip-constraint> or <resin:IfNetwork>, but
request.getRemoteAddr() will always be the IP of the proxy, and the real
IP is in X-Forwarded-For header.
It seems I cannot put a Servlet filter in front of Resins
SecurityFilterChain (in which I could have wrapped the request and
overriden getRemoteAddr())?
Can I add custom com.caucho.rewrite.RequestPredicate implementations to
the SecurityFilterChain somehow...???
--
</Mattias>
_______________________________________________
resin-interest mailing list
resin-interest@caucho.com
http://maillist.caucho.com/mailman/listinfo/resin-interest
