Orginally, it came up in the context of enforcing MVC and preventing JSPs from linking to each other. Another use would be to protected selected JSPs. Though, once you start to discriminate, an actual security scheme might be a better option.
-- Ted Husted, Husted dot Com, Fairport NY USA. -- Custom Software ~ Technical Services. -- Tel +1 716 737-3463 -- http://www.husted.com/struts/ "Park, David" wrote: > > If I understand the philosophy behind placing JSP pages in WEB-INF, it > is to secure them as resources... Only JSP pages that are NOT to be > directly navigated to should go there. These JSP pages can be accessed > by being included from another JSP page, or forwarded to. > > Welcome files, such as index.jsp should continue to reside in the top > level of your application. > > Hope this helps, > -david > > -----Original Message----- > From: [EMAIL PROTECTED] > Sent: Wed 12/19/2001 1:25 PM > To: [EMAIL PROTECTED] > Cc: > Subject: jsp pages under WEB-INF.. > > > > Hi, I know this question has been answered before, but I cannot > find the > answer :( > > I have placed all my jsp pages under a subdirectory of WEB-INF, > as > recommended by Ted Husted. I would like a default page when I go > to the > application (like an index.jsp), but I don't know how to do the > mapping. I > assume I need to put an action mapping or global forward in > struts-config.xml and something in web.xml? > > Any help would be greatly appreciated > > Thanks > > /Neil > > > > -- > To unsubscribe, e-mail: > <mailto:[EMAIL PROTECTED]> > For additional commands, e-mail: > <mailto:[EMAIL PROTECTED]> > > -- To unsubscribe, e-mail: <mailto:[EMAIL PROTECTED]> For additional commands, e-mail: <mailto:[EMAIL PROTECTED]>
