Can you be more precise the about the enviroment?
Have u tried to set the security-constraint in web.xml to restrict user from directly access to JSP files and force user to use SSL connection. View the original post : http://www.jboss.com/index.html?module=bb&op=viewtopic&p=4181243#4181243 Reply to the post : http://www.jboss.com/index.html?module=bb&op=posting&mode=reply&p=4181243 _______________________________________________ jboss-user mailing list jboss-user@lists.jboss.org https://lists.jboss.org/mailman/listinfo/jboss-user