How to implement a ip white list secured spring integration http inbound gateway?

Question

We want to add a white list on a spring integration http inbound gateway. I have googled for quite a while but found few useful. Is there some out-of-box filter in spring integration can do this？ like:

<int-http:inbound-gateway request-channel="toOutbound" path="/proxy/someService" >
    <int:filter expression="hasIpAddress(www.somepartner.com, www.otherpartner.com)"/>
</int-http>

Or how can we get the request ip address in the message header and implement a custom filter.

Any idea is welcome, thanks.

Answer 1

The http gateway currently runs within a servlet container (tomcat etc); you can either use the native container's security features, or use the Spring Security project to secure your application (the DispatcherServlet) independent of the server implementation.