struts-user mailing list archives

Site index · List index
Message view « Date » · « Thread »
Top « Date » · « Thread »
From Tim Christopher <tim.christop...@gmail.com>
Subject Re: AW: Hiding pages under WEB-INF
Date Wed, 23 Feb 2005 22:59:41 GMT
I'd have to say not really ;o) ...  Though I'm sure you could probably
prevent hotlinking and whatever else if you did.  Personally I don't
think its worth the bother.

Note: If you put resources that the user requires behind the WEB-INF
folder (i.e. JS, CSS, images, etc.) you will have to write some sort
of action to give them access.  Forwarding a user to a JSP page behind
your WEB-INF folder will work with no alterations.

I believe all of this is on a thread from a few weeks back, and
explained much better there :o)

On Wed, 23 Feb 2005 16:48:34 -0500, Jeff Beal <jbbeal@gmail.com> wrote:
> I understand the security benefits for a JSP page, but are there any
> for CSS pages, JS files, or images?  What does it help with
> statistics?
> 
> On Wed, 23 Feb 2005 22:44:37 +0100, Leon Rosenberg
> <struts_user@anotheria.net> wrote:
> > > What would be the benefits to doing this?  (just curious)
> >
> > Control access to items for security and statistics for example
> >
> 
> --
> Jeff Beal
> Webmedx, Inc.
> Pittsburgh, PA USA
> 
> ---------------------------------------------------------------------
> To unsubscribe, e-mail: user-unsubscribe@struts.apache.org
> For additional commands, e-mail: user-help@struts.apache.org
> 
>

---------------------------------------------------------------------
To unsubscribe, e-mail: user-unsubscribe@struts.apache.org
For additional commands, e-mail: user-help@struts.apache.org


Mime
View raw message