I'm using Tomcat 6 to serve a web application that consists of a bunch of JSF pages and a bunch of static HTML help files. The web application uses authentication, and the JSF pages are not accessible unless you first log in with a username and password. So far so good. But the static HTML help files, by virtue of being static, are accessible to anyone, authenticated or not.
Is there any way to place the web application's authentication mechanism in front of the static HTML, so that it's accessible only to users who are logged in? I've read through the tomcat configuration documentation, but there doesn't seem to be any feature I can exploit to achieve this. Perhaps I am missing something simple, or there is another way that doesn't involve tomcat configuration, or perhaps I will have to modify or extend the default servlet. Or maybe it isn't possible with Tomcat alone. Any ideas? -- Richard --------------------------------------------------------------------- To start a new topic, e-mail: users@tomcat.apache.org To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
