waffle filter vs waffle valve?

Dec 28, 2010 at 2:36 PM


What are the reasons that one would choose the Waffle filter (NegotiateSecurityFilter) vs the Waffle authenticator (NegotiateAuthenticator) and/or vice versa?

In other words, which one should I use if I'm running my apps on Tomcat?


Dec 28, 2010 at 2:51 PM

Authenticators are tomcat-specific things and work with Tomcat only. Filters are servlet-standard things and work with any server that implements servlets. Tomcat has its own mechanism because it allows some more features (although IMHO it's a great example of overengineering). I think you should use filters whereever possible.