I have a query about how tomcat stores DataSources that are created as part of the Resource element in the context.xml file.
If the file is stored within the webapp's META-INF directory (as recommended), will any defined DataSources be made available to other webapp modules by binding them to the global JNDI tree or does tomcat store the reference by a more secure, webapp specific means? >From reading the tomcat documentation, it appears to bind them to the global jndi tree but surely this creates the possibility that an other web application could maliciously access datasource, specifically in shared server web hosting environments? Thanks in advance. Nigel
