...
We haven't added much, if any, security yet, because anyone who can CAS authenticate can now access the Manager. We need to add an authorization layer. For this we'll use the very simple Filter that comes with the Java CAS client to declare NetIDs authorized to access the Manager.
Add this filter declaration:
| Code Block | ||||||
|---|---|---|---|---|---|---|
| ||||||
<filter>
<filter-name>Authz Filter</filter-name>
<filter-class>edu.yale.its.tp.cas.client.filter.SimpleCASAuthorizationFilter</filter-class>
<init-param>
<param-name>edu.yale.its.tp.cas.client.filter.authorizedUsers</param-name>
<param-value>awp9</param-value>
</init-param>
</filter>
|
And add this filter mapping:
| Code Block | ||||||
|---|---|---|---|---|---|---|
| ||||||
<filter-mapping>
<filter-name>Authz Filter</filter-name>
<url-pattern>/*</url-pattern>
</filter-mapping>
|
CASifying multiple Tomcats
...