ONJava.com -- The Independent Source for Enterprise Java
oreilly.comSafari Books Online.Conferences.

advertisement

AddThis Social Bookmark Button
Article:
  Using Tomcat 4 Security Realms
Subject:   need clarification
Date:   2004-04-07 23:52:46
From:   msreedhar2k
I had included the following configuration in web.xml. The thing is, i want all the files within in the directory 'Users', which is in application context, should not be accessed.


Will the following code is sufficient or would we need to do any thing more? Please help me in this regard.


<security-constraint>
<web-resource-collection>
<web-resource-name>restrict all files</web-resource-name>
<url-pattern>/Users/*</url-pattern>
</web-resource-collection>
</security-constraint>



thanx,
Sree