Hi, I think the easiest way is to add a security contsraint in you web.xml of you web application:
<web app...> <security-contraint> <web-resources-collection> <web-resource-name>Test</web-resource-name> <url-pattern>/myjsps/*</url-pattern> </web-resources-collection> <auth-contsraint/> <security-contraint> ... </web app> this will block all reuqests to the folder /myjsps You can also block certain http methods or allow access th certain users, check the spec for more details. Cheers Bernhard -----Ursprüngliche Nachricht----- Von: apuerta.foros [mailto:[EMAIL PROTECTED] Gesendet: Dienstag, 1. Februar 2005 20:23 An: tomcat-user@jakarta.apache.org Betreff: Deny access to a JSP page Hi all. I'd like Tomcat to deny access to some JSPs with internal information. I can configure Apache to deny access depending on the user IP, transparently. I'd like to do the same in Tomcat, but i don't now how. Any idea? Thanks. --------------------------------------------------------------------- To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED] --------------------------------------------------------------------- To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]