Open access control for testing
Mathew, Sunil
smathew at hbs.edu
Tue Aug 11 16:55:04 UTC 2020
Hi,
I am testing tomcat valve on ECS and I want to open up Shibboleth access control.
Here is tomcat valve:
<!-- add valve x-forwarded-for -->
<Valve className="org.apache.catalina.valves.RemoteIpValve"
internalProxies="10\.140\.(0|1)\.\d{1,3}"
remoteIpHeader="x-forwarded-for"
proxiesHeader="x-forwarded-by"
protocolHeader="x-forwarded-proto"
trustedProxies="proxy1|proxy2|proxy3" />
Shibboleth access-control.xml:
<entry key="AccessByIPAddress">
<bean id="AccessByIPAddress" parent="shibboleth.IPRangeAccessControl"
p:allowedRanges="#{ {'127.0.0.1/32', '::1/128', '10.140.0.0/25', '10.140.0.128/25', '10.140.1.0/25'} }" />
</entry>
Any suggestions?
Thanks in advance.
Regards,
Sunil
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://shibboleth.net/pipermail/users/attachments/20200811/15dcd7bb/attachment.htm>
More information about the users
mailing list