Hi, I have a JSP that uses a bean. It uses the following directory structure : webapps/myapply/myapply.jsp webapps/myapply/web-inf/classes/mybean.class It works fine but I am annoyed that people can download the bean directly and "access" its content because it contains critical information (passwords). How do I protect my bean and more generraly I'd like to protect the whole web-inf directory (if it's possible) Note : I'm using Tomcat standalone. Thanks
- Re: Deny web-inf access (security problem) Paul Gonin
- Re: Deny web-inf access (security problem) William Brogden
- Re: Deny web-inf access (security problem) Craig R. McClanahan
- Re: Deny web-inf access (security problem) mayan
- modifying web.xml on the fly John de la Garza
- RE: Deny web-inf access (security problem) guyr
- RE: Deny web-inf access (security problem) Kitching Simon
- Re: Deny web-inf access (security problem) Paul Gonin