Is there a way to exclude access to the Servoy admin page (servoy-admin) for users who can connect to the web-client through internet?
Or:
Is there a way to grant access to the Servoy admin page (servoy-admin) only from localhost (Servoy Application Server)?
Regards,
only admin users are allowed…
So i guess all your normal users that you have in your webclient are not servoy admin users right?
Hi Johan,
I meant a way to ‘block’ the servoy-admin login window or to ‘hide’ the /servoy-admin url for ip numbers other than localhost.
This is really more a firewall issue to the outside world, because what is “localhost” pure really localhost? If i just have a server with no ui at all? (which is very common)
then i am mostly on the local area network of that server and i do want then to access it
But everything from the ouside world should be blocked.
So this is really more a DMZ/Firewall problem then a pure tomcat problem
But for tomcat you have a configuration where you can do this:
http://tomcat.apache.org/tomcat-7.0-doc … ess_Filter
so in your global web.xml (conf/web.xml) you can add the above filter when configured it right (so the url mapping shouild then be servoy-admin)
Thanks for this info Johan!