[Building Sakai] EntityBroker IP Filtering
Steve Swinsburg
steve.swinsburg at gmail.com
Wed Aug 5 14:17:33 PDT 2009
The valve info is for all Tomcat webapps/contexts in general. Whilst my blog
post specifically mentioned securing the webservices in 2.5 via a valve, it
can be applied to any webapp. In Sakai, it might have other complications if
things depend on that particular webapp.
Seth was mentioning the work he did in backporting the code that is in 2.6
for securing the web services out of the box via sakai.props
cheers,
Steve
(still overseas, found a computer - sorry for the lack of punctuation,
foreign keyboard, cant find half the characters!)
On Wed, Aug 5, 2009 at 9:38 PM, Stephen Marquard <stephen.marquard at uct.ac.za
> wrote:
> Although that's all for SOAP (axis) webservices, whereas I think the
> original question was about the /direct/ REST services.
>
> Cheers
> Stephen
>
> >>> Seth Theriault <slt at columbia.edu> 8/5/2009 9:33 PM >>>
> Steve Swinsburg wrote:
>
> > A Tomcat Valve will restrict access to a particular
> > context/webapp as the settings are at the webapp level. For
> > more dime grained you'd need proper auth built in.
> >
> > If you have a look on my blog (Steve on Sakai) for the article
> > about setup and securing the web services there is an example
> > of tomcat valves on there. I'd give you the link if I was at a
> > computer ;)
>
> The relevant blog entry is here:
>
>
> http://steve-on-sakai.blogspot.com/2009/05/enabling-web-services-in-sakai-and.html
>
> In addition, the built-in filtering introduced in 2.6
> has been back-ported to 2.5.x (by me) for those interested:
>
> http://jira.sakaiproject.org/browse/SAK-13689
>
> I have running locally on a test machine and plan to deploy it
> some time this month.
>
> Seth
>
> _______________________________________________
> sakai-dev mailing list
> sakai-dev at collab.sakaiproject.org
> http://collab.sakaiproject.org/mailman/listinfo/sakai-dev
>
> TO UNSUBSCRIBE: send email to
> sakai-dev-unsubscribe at collab.sakaiproject.org with a subject of
> "unsubscribe"
>
>
>
-------------- next part --------------
An HTML attachment was scrubbed...
URL: http://collab.sakaiproject.org/pipermail/sakai-dev/attachments/20090805/9974fcb8/attachment.html
More information about the sakai-dev
mailing list