Hi all, I would like to know if anybody can tell me how to restrict web access to my web app's base directory and its sub directories. i.e. webapp "Test1" has a file root.xml (tomcat\webapps\Test1\root.xml) While I do need read access programmatically, I need for web users to not access that file. I am using an isapi connector through IIS (if that helps). I do realize that permissions for directories reside in catalina.policy but that appears to be permissions for programmatic access (i.e. my webapp). I am running Tomcat version 5.x.
Thank you for your help.
