Re: How to protect static HTML's

2003-06-25 Thread Jean-Francois Arcand
ECTED]> wrote: At 10:57 AM 6/25/2003, you wrote: -Original Message- From: Shapira, Yoav [mailto:[EMAIL PROTECTED] Sent: Wednesday, June 25, 2003 12:53 PM To: Tomcat Users List Subject: RE: How to protect static HTML's Howdy, (2) Use filters.

RE: How to protect static HTML's

2003-06-25 Thread Justin Ruthenbeck
g on the Servlet2.4 element. justin --- Justin Ruthenbeck <[EMAIL PROTECTED]> wrote: > At 10:57 AM 6/25/2003, you wrote: > > > > -Original Message- > > > From: Shapira, Yoav > [mailto:[EMAIL PROTECTED] > > > Sent: Wednesday, June 25, 2003 12:53 PM

Re: How to protect static HTML's

2003-06-25 Thread Michael Duffy
Oops, I meant serlvet spec 2.4. --- Jean-Francois Arcand <[EMAIL PROTECTED]> wrote: > > > Mike Curwen wrote: > > >>-Original Message- > >>From: Shapira, Yoav [mailto:[EMAIL PROTECTED] > >>Sent: Wednesday, June 25, 2003 12:53 PM >

RE: How to protect static HTML's

2003-06-25 Thread Michael Duffy
gt; From: Shapira, Yoav > [mailto:[EMAIL PROTECTED] > > > Sent: Wednesday, June 25, 2003 12:53 PM > > > To: Tomcat Users List > > > Subject: RE: How to protect static HTML's > > > > > > > > > > > > Howdy, > > > > > &g

RE: How to protect static HTML's

2003-06-25 Thread Shapira, Yoav
Howdy, >> I wouldn't suggest that option, as it may break when the >> Servlet Specification v2.4 will be different. Filters will >> run on the same request through RequestDispatcher.forward. > >Only when you specify that they are to be run that way. You can specify >that they only be run on inc

RE: How to protect static HTML's

2003-06-25 Thread Justin Ruthenbeck
At 10:57 AM 6/25/2003, you wrote: > -Original Message- > From: Shapira, Yoav [mailto:[EMAIL PROTECTED] > Sent: Wednesday, June 25, 2003 12:53 PM > To: Tomcat Users List > Subject: RE: How to protect static HTML's > > > > Howdy, > > >(2) Use f

Re: How to protect static HTML's

2003-06-25 Thread Jean-Francois Arcand
Mike Curwen wrote: -Original Message- From: Shapira, Yoav [mailto:[EMAIL PROTECTED] Sent: Wednesday, June 25, 2003 12:53 PM To: Tomcat Users List Subject: RE: How to protect static HTML's Howdy, (2) Use filters. All filters set for a particular request are run

Re: How to protect static HTML's

2003-06-25 Thread Tim Funk
If you configure it to do so. -Tim Shapira, Yoav wrote: Howdy, (2) Use filters. All filters set for a particular request are run *once* on an incoming request. If you do a RequestDispatcher.forward(), the filters will not be run again -- and you won't have recursion. I wouldn't suggest tha

RE: How to protect static HTML's

2003-06-25 Thread Mike Curwen
> -Original Message- > From: Shapira, Yoav [mailto:[EMAIL PROTECTED] > Sent: Wednesday, June 25, 2003 12:53 PM > To: Tomcat Users List > Subject: RE: How to protect static HTML's > > > > Howdy, > > >(2) Use filters. All filters set for a par

RE: How to protect static HTML's

2003-06-25 Thread Shapira, Yoav
Howdy, >(2) Use filters. All filters set for a particular request are run *once* >on an incoming request. If you do a RequestDispatcher.forward(), the >filters will not be run again -- and you won't have recursion. I wouldn't suggest that option, as it may break when the Servlet Specification

Re: How to protect static HTML's

2003-06-25 Thread Justin Ruthenbeck
Ivan -- You're really close to getting it ... two options: (1) Keep your servlet the way it is. Add a request attribute (req.setAttribute()) during your security check if the security check finishes successfully. Check for this attribute before doing the security check again. Think of this

RE: How to protect static HTML's

2003-06-25 Thread Collins, Jim
Use struts and move all of your JSP and html pages to WEB-INF. Any reference to a page change to a struts mapping then in the action class you can check if the user has rights and if they do forward to the page. Regards Jim. -Original Message- From: Ivan Ivanov [mailto:[EMAIL PROTECTED]