Here is a list of known useful third-party tools and add-ons that are not included in the main distribution.
It is similar to mod_rewrite module of Apache HTTPD server.
SecurityFilter is a Filter that mimics container managed security.
Apache Shiro is a Java security framework that performs authentication, authorization, cryptography, and session management. It can be configured as a Filter to secure a web application.
Spring Security is a powerful and highly customizable authentication and access-control framework. It is usually used with Spring Framework. In simple configuration it may be used as a filter to perform both authentication and authorization. It also can be used to perform authorization control at business methods of an application, and to implement domain object security.
OrientDBRealm - Realms for Tomcat 6 and 7 that connect to an OrientDB
PSI Probe manager application
PSI Probe is advanced manager and monitor web application for Apache Tomcat.
(Historically, the name is a tribute to Lambda Probe project, which they continued as a fork. The original Lambda Probe project (www.lambdaprobe.org) closed more than 10 years ago (2006) and is not applicable to current versions of Tomcat).