Robert Taylor wrote:
I didn't realize that was added to the 2.4 spec.
It was in 2.3, too. I'd guess it was in the spec from the get-go,
but don't have an older copy to hand to confirm.
Even so, it would be nice to know how to use CMS to achieve this.
What is your definition of "Container Managed Security", then, if
not this? The container prevents direct access to the resources
placed within WEB-INF, without you having to do anything else.
Maybe a better way to form the question would be how do I use
CMS to protect .jsp pages from direct access
as above.
> and return a user
friendly page/message when a .jsp page is requested without going through
the controller?
A custom 404 page should take care of it. And you can get as fancy
with that as you like :-)
FWIW!
--
Hassan Schroeder ----------------------------- [EMAIL PROTECTED]
Webtuitive Design === (+1) 408-938-0567 === http://webtuitive.com
dream. code.
---------------------------------------------------------------------
To unsubscribe, e-mail: [EMAIL PROTECTED]
For additional commands, e-mail: [EMAIL PROTECTED]
