SecurityFilter : How to ignore a particular URL pattern from SecurityFilter

2,595 views

Skip to first unread message

Saurabh Vaidya

unread,

May 15, 2015, 10:07:06 AM5/15/15

to waffle...@googlegroups.com

If I don't want to apply SecurityFilter for a particular URL pattern then what should we do?

My application requirement is we should access public pages which does not require windows authentication.

In same application if we want that few URLs should be accessible publicly even that is not a member of the domain but in same intranet.

In general we configure like below.

<filter-mapping>

<filter-name>SecurityFilter</filter-name>

<url-pattern>/*</url-pattern>

</filter-mapping>

Ref: https://github.com/dblock/waffle/blob/master/Docs/ServletSingleSignOnSecurityFilter.md

Thanks in advance.

Saurabh

Daniel Doubrovkine

unread,

May 15, 2015, 3:34:40 PM5/15/15

to waffle...@googlegroups.com

The URL pattern mapping does not support exclusions. This is a limitation of the Servlet specification.

There're a few workarounds that require code, http://stackoverflow.com/questions/8658949/in-a-web-xml-url-pattern-matcher-is-there-a-way-to-exclude-urls, http://stackoverflow.com/questions/3125296/can-i-exclude-some-concrete-urls-from-url-pattern-inside-filter-mapping, etc.

--
You received this message because you are subscribed to the Google Groups "waffle" group.
To unsubscribe from this group and stop receiving emails from it, send an email to waffle-users...@googlegroups.com.
For more options, visit https://groups.google.com/d/optout.

dB. | Moscow - Geneva - Seattle - New York
code.dblock.org - @dblockdotorg - artsy.net - github/dblock

Reply all

Reply to author

Forward

0 new messages