tomcat-users mailing list archives

Site index · List index
Message view « Date » · « Thread »
Top « Date » · « Thread »
From Ashish Kulkarni <kulkarni_ash1...@yahoo.com>
Subject Re: secure jsp using web.xml in tomcat 5.0.19
Date Thu, 18 Nov 2004 15:42:16 GMT
Hi
I am using struts framework and want to make sure that
sure access jsp only from action classes and not
directly
Ashish
--- Larry Meadors <Larry.Meadors@plumcreek.com> wrote:

> You told tomcat to only allow post and get access to
> your jsp files.
>  
> Uhh, that is about all you can possibly allow.
>  
> What are you trying to do?
> 
> >>> kulkarni_ash1312@yahoo.com 11/17/2004 3:06:18 PM
> >>>
> 
> Hi
> I want to secure all my jsp in my web application, 
> I added following security constraint in my web.xml
> file, but some how seems it does not work
> <security-constraint>
>  <web-resource-collection>
>   <web-resource-name>Block Access to jsp
> files</web-resource-name>
>   <description>This is to block access to all jsp
> files</description>
>   <url-pattern>*.jsp</url-pattern>
>   <http-method>POST</http-method>
>   <http-method>GET</http-method>
>  </web-resource-collection>
> </security-constraint>
> what may be the reason??
> 
> 



		
__________________________________ 
Do you Yahoo!? 
The all-new My Yahoo! - Get yours free! 
http://my.yahoo.com 
 


---------------------------------------------------------------------
To unsubscribe, e-mail: tomcat-user-unsubscribe@jakarta.apache.org
For additional commands, e-mail: tomcat-user-help@jakarta.apache.org


Mime
View raw message