Hey Kev,
It seems that after that long discussion on the JSP list, each one ended
up building his own MVC framework, remember that? ;) At the beginning, I
also integrated this feature inside my framework but then I realised
that this way I wouldn't be able to re-use it for other applications, or
even for static content. That's the reason why I ended up creating a
filter. But there are some things I don't like about filters: They have
to be configured in the web.xml and they are not easily integrated with
other parts of the framework, unless you share objetcs through the
context or something simliar. What I would love to have is a "feedback"
mechanism to provide the containers with some extra
information/configuration that is not included in the web.xml. This way
I could just configure everything in my own framework configuration file
and then I would give the feedback to the container. Otherwise, if you
use filters for logging, authentication, IP filtering... your web.xml
ends up being extra-large and having the application configured in two
places is error-prone. But well, such a feedback API is not in place
so... ;)
Talking about the IP filter, if you are interested, I can show you my
DTD and even some code as it is nothing extra-complex.
Regards,
Dan
Kevin Duffey wrote:
>
> Hey Daniel,
>
> That is a great idea..DUH! ;) I am using my own simple MVC framework, and I
> should just put in a feature in the web.xml that gets read in as an init
> parameter that designates ips that are allowed/now allowed to access the
> application. Its simple enough to do.
>
> Thanks.
>
> -----Original Message-----
> From: [EMAIL PROTECTED]
> [mailto:[EMAIL PROTECTED]]On Behalf Of Daniel Lopez
> Sent: Monday, April 09, 2001 3:28 AM
> To: Orion-Interest
> Subject: Re: During development, how to allow only a couple of
> ips,including my local system, to view the site?
>
> Hi Kev,
>
> I had a similar problem but for my production applications. I wanted my
> solution to be flexible and server independent so what I did was create
> a servlet filter, as someone else has already suggested. I've had it for
> production for almost a month and so far so good.
> I have to admit that I went a little further down the road and I allowed
> to specify the IP/hostnames to be allowed denied through an xml file
> that can be read from a file, a URL or a database. That way I got
> maximum flexibility.
> These are the links that I used to create my filter:
> http://developer.java.sun.com/developer/technicalArticles/Servlets/servletap
> i2.3\
> http://www.orionserver.com/tutorials/filters/
>
> I hope this helps,
> Dan
>
> Kevin Duffey wrote:
> >
> > Hi all,
> >
> > I would like to block out ALL ips from viewing my site (using my static
> ip)
> > except for a few ips, which are from co-workers over the internet. Is this
> > possible? If so, how? I read in the orion-web.xml.html file about
> ip-access
> > tag, and when I tried it, it did block off all ips. But when I added when
> to
> > allow it, such as "localhost" or my direct IP, sometimes it wouldn't allow
> > it, and other times the browser sat and spun for about 5 minutes, then
> > reported a time out.
> >
> > Thanks.
>
> --
> -------------------------------------------
> Daniel Lopez Janariz ([EMAIL PROTECTED])
> Web Services
> Computer Center
> Balearic Islands University
> -------------------------------------------
--
-------------------------------------------
Daniel Lopez Janariz ([EMAIL PROTECTED])
Web Services
Computer Center
Balearic Islands University
-------------------------------------------
