You can disable scripting in JSP by adding this to your web.xml file
<jsp-config>
<jsp-property-group>
<url-pattern>*.jsp</url-pattern>
<scripting-invalid>true</scripting-invalid>
</jsp-property-group>
</jsp-config>
Also see: http://java.sun.com/javaee/5/docs/tutorial/doc/bnaoq.html
On Tue, Dec 8, 2009 at 9:21 AM, Shital Patil <[email protected]> wrote:
> Dear All,
>
> Thanks for your valuable suggestions.
> Actually I am failed to convince my PM for using JSP pages in web app.
> He said, there are some serious problems with JSP.
> e.g JSP = presentation + code.
> A JSP developer can easily read some imp file on disk say, /etc/passwd, and
> throw it to the client. How to avoid this problem?
>
>
> Regards,
> Shital
>
> --- On Tue, 8/12/09, Halil Ağın <[email protected]> wrote:
>
> From: Halil Ağın <[email protected]>
> Subject: Re: struts2 web app without jsp pages, is it possible?
> To: "Struts Users Mailing List" <[email protected]>
> Date: Tuesday, 8 December, 2009, 12:56 PM
>
> html+freemarker+json
>
> On Tue, Dec 8, 2009 at 2:12 PM, Saeed Iqbal <[email protected]> wrote:
>
>> You can easily have html extension for your web page and use sitemesh for
>> templating
>>
>> On Tue, Dec 8, 2009 at 5:08 PM, Shital Patil <[email protected]
>> >wrote:
>>
>> > Dear All,
>> >
>> > I want to develop web application in struts2 framework but without jsp
>> > pages.
>> > We are going to use HTML template engine for view.
>> > Is it possible to develop web application in struts2 without jsp pages?
>> > Is this a good idea?
>> >
>> >
>> > Regards,
>> > Shital
>> >
>> >
>> > The INTERNET now has a personality. YOURS! See your Yahoo! Homepage.
>> > http://in.yahoo.com/
>>
>>
>>
>>
>> --
>> Saeed Iqbal
>> Independant Consultant
>> J2EE - Application Architect / Developer
>>
>
>
>
> The INTERNET now has a personality. YOURS! See your Yahoo! Homepage.
> http://in.yahoo.com/
---------------------------------------------------------------------
To unsubscribe, e-mail: [email protected]
For additional commands, e-mail: [email protected]
