You signed in with another tab or window. Reload to refresh your session.You signed out in another tab or window. Reload to refresh your session.You switched accounts on another tab or window. Reload to refresh your session.Dismiss alert
It would be useful to handle internal network traffic differently than external traffic. An all-or-nothing block or allow can be accomplished with Undertow's built-in IP Access Control Handler. This could be a good example starting point for a custom Handler. Specifically requiring login to view pages, but only if offsite could be useful. Needs to be aware of X-Forwarded-For. Probably redirect to /sso. A Servlet filter is probably easier to create, but would need to be installed per app. The declarative security in web.xml is also all or nothing so we don't have fine grain access control.
The text was updated successfully, but these errors were encountered:
It would be useful to handle internal network traffic differently than external traffic. An all-or-nothing block or allow can be accomplished with Undertow's built-in IP Access Control Handler. This could be a good example starting point for a custom Handler. Specifically requiring login to view pages, but only if offsite could be useful. Needs to be aware of X-Forwarded-For. Probably redirect to
/sso. A Servlet filter is probably easier to create, but would need to be installed per app. The declarative security in web.xml is also all or nothing so we don't have fine grain access control.The text was updated successfully, but these errors were encountered: