If you really really want to it:
Read about exclusion rules in
http://tomcat.apache.org/connectors-doc/reference/uriworkermap.html
but think twice, if this is robust, i.e. if the web server admin will
have a chance to keep this up-to-date.
Regards,
Rainer
tomcat user wrote:
Why would you assume that?
because.
Not readily, since static content comes from there. You could write a
filter to return an error for a request for a prohibited file.
Thank you for your help Chuck, I just thought there had to be an easier
way. I would think it pretty basic to want to be able to allow certain
directories to be viewed or not within a web server, but I guess not.
Thanks again.
Frank
On 6/25/07, Caldarale, Charles R <[EMAIL PROTECTED]> wrote:
> From: tomcat user [mailto:[EMAIL PROTECTED]
> Subject: Re: securing directory
>
> assuming that a file does need to reside directly under
> the webapp folder
Why would you assume that?
> can I secure the webapp directory?
Not readily, since static content comes from there. You could write a
filter to return an error for a request for a prohibited file.
- Chuck
---------------------------------------------------------------------
To start a new topic, e-mail: users@tomcat.apache.org
To unsubscribe, e-mail: [EMAIL PROTECTED]
For additional commands, e-mail: [EMAIL PROTECTED]
