The product manager has said do it that way
His boss has said do it that way
My boss's boss has said do it that way
And I've got the emails to prove it ;)
On Thu, November 12, 2009 3:08 pm, Joseph Morgan wrote:
> Did I just hear... "D--- the torpedos!"
>
> -Origi
Thanks guys, I've got what I needed working. Most appreciated.
Regards,
John.
-
To unsubscribe, e-mail: users-unsubscr...@tomcat.apache.org
For additional commands, e-mail: users-h...@tomcat.apache.org
be
> escorting you out???
>
> -----Original Message-
> From: John Morrison [mailto:morr...@gmail.com]
> Sent: Thursday, November 12, 2009 8:18 AM
> To: users@tomcat.apache.org
> Subject: RE: Token Security
>
> On Thu, November 12, 2009 1:33 pm, Joseph Morgan wrote:
>> Joh
On Thu, November 12, 2009 1:33 pm, Joseph Morgan wrote:
> John,
>
> Just curious, but have you looked into existing token-based security
> mechanisms such as LTPA (if you're predominantly an IBM shop) or SAML?
Hi Joseph
I haven't to be honest; this isn't a java shop. MS is 99% of what we use
but
On Thu, November 12, 2009 1:49 pm, Joseph Morgan wrote:
>>Correct, at the moment there is no requirement to actually authenticate
>>the user. However, I've been told to ensure that, if the client wishes
>>(and pays) that the solution could be expanded to do so.
>
> I may have missed something, but
On Thu, November 12, 2009 1:49 pm, Joseph Morgan wrote:
>>Correct, at the moment there is no requirement to actually authenticate
>>the user. However, I've been told to ensure that, if the client wishes
>>(and pays) that the solution could be expanded to do so.
>
> I may have missed something, but
Hi Christopher,
On Wed, November 11, 2009 10:07 pm, Christopher Schultz wrote:
> -BEGIN PGP SIGNED MESSAGE-
> Hash: SHA1
>
> John,
>
> On 11/11/2009 2:11 PM, John Morrison wrote:
>> 1) The referer must be XXX (configurable)
>> 2) There must be a token passed
On Wed, November 11, 2009 9:51 pm, Mark Thomas wrote:
> John Morrison wrote:
>> Hi,
>>
>> I've been asked to put some security in place for a website, at the
>> moment
>> there are two requirements with a possible extension;
>>
>> 1) The refere
Hi,
I've been asked to put some security in place for a website, at the moment
there are two requirements with a possible extension;
1) The referer must be XXX (configurable)
2) There must be a token passed either GET or POST in the URL which
matches some internally generated code.
The possible
