DO NOT REPLY TO THIS EMAIL, BUT PLEASE POST YOUR BUG RELATED COMMENTS THROUGH THE WEB INTERFACE AVAILABLE AT <http://nagoya.apache.org/bugzilla/show_bug.cgi?id=9772>. ANY REPLY MADE TO THIS MESSAGE WILL NOT BE COLLECTED AND INSERTED IN THE BUG DATABASE.
http://nagoya.apache.org/bugzilla/show_bug.cgi?id=9772 RequestDispatcher.forward(resource) does not perform necessary checks ------- Additional Comments From [EMAIL PROTECTED] 2002-06-12 15:57 ------- Java Servlet Specification Version 2.3 SRV.12.2 Declarative Security The security model does not apply when a servlet uses the RequestDispatcher to invoke a static resource or servlet using a forward or an include. The theory is that 2.3 is a clarification of 2.2 when they address the same issues. You can do an HTTP redirect over to the security page instead of using an internal forward. (Is this really a duplicate of 5722 "Forward to a page that have no extension displays a blank page"?) -- To unsubscribe, e-mail: <mailto:[EMAIL PROTECTED]> For additional commands, e-mail: <mailto:[EMAIL PROTECTED]>
