-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Hi,
I'm looking for the Tomcat 6 security configuration that would correspond to Apache httpd's "Satisfy Any". In other words, use HTTP Digest authentication for a web app, but allow some specific IP address access without authentication. I already have the Digest Authenticator Valve working, and am looking at the RemoteAddrValve. But the documentation suggests that if I add that, it will add another restriction ("Satisfy All" in httpd-speak). Is there a solution for this within Tomcat? Cheers, Marcus -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.4.10 (GNU/Linux) iEYEARECAAYFAkt6yVkACgkQXjXn6TzcAQlDbQCg2PK3usfMHvyUwzXtKADXF5Na Ms4An0woTNy5pPImu4sTAqQv9JUA9XAp =b7Si -----END PGP SIGNATURE----- --------------------------------------------------------------------- To unsubscribe, e-mail: users-unsubscr...@tomcat.apache.org For additional commands, e-mail: users-h...@tomcat.apache.org