I have seen many posts on this subject, but no definitive answers. It's said that you can use the RemoteAddrValve and RemoteHostValve to allow different degrees of access to different applications published under webapps, but how?
The admin.xml example uses a context fragment. If I have another application under webapps do I need to create a similar context fragment for it? Do I create a context for it in the server.xml? Or perhaps the RemoteAddrValve code is placed into that applications WEB-INF/web.xml? Bob