But you can do:
/view/*
Just put your protected pages under a protected directory.
Hicks, James wrote:
>You can use the and tags in your
>deployment description to block access to a JSP page. The only problem with
>this is you have to list every single jsp file you want to protect. You
>ca
Some people put JSP files in their WEB-INF directory.
No direct access is allowed by a user to anything
under the WEB-INF directory, but you can forward a
user there and do includes from there. I've done this
to hide JSP template pages.
David
--- "Hicks, James" <[EMAIL PROTECTED]> wrote:
> You
You can use the and tags in your
deployment description to block access to a JSP page. The only problem with
this is you have to list every single jsp file you want to protect. You
cant use the '*.jsp' expression to hide all jsp files.
--- start web.xml ---
hiddenrole
erhaps there is something to change in my web.xml?
-Message d'origine-
De : Dan Miser [mailto:[EMAIL PROTECTED]]
Envoyé : lundi 14 mai 2001 15:47
À : [EMAIL PROTECTED]
Objet : Re: Disable JSP ?
If you don't want your users to access the JSP pages,
place them in (or
underneath) the WEB
If you don't want your users to access the JSP pages, place them in (or
underneath) the WEB-INF directory. You still need to have the JSP processor
as normal in web.xml.
--
Dan Miser
http://www.distribucon.com
>From: "[EMAIL PROTECTED]"<[EMAIL PROTECTED]>
>Reply-To: [EMAIL PROTECTED]
>To: [EMAI
5 matches
Mail list logo