I'm trying to write a filter (or use a security-constraint) to eliminate
Tomcat serving up files from a directory that starts with a dot - .svn
in this case. It appears, based on reading the servlet spec, that /* is
not sufficient for this. Indeed, using Tomcat 6.0.18 I've seen that a
request for /.svn/entries is passed through without hitting my filter.
Is there something I'm missing that would allow me to trap this? It
looks like the spec is rather lean in this area and assumes that a dot
in a file name means that it is an extension, not part of the real name.
My only other thought is to write my own Valve to do this. It would be
conceptually similar to the Remote Address/Host Filters.
Thanks for any ideas.
---------------------------------------------------------------------
To unsubscribe, e-mail: users-unsubscr...@tomcat.apache.org
For additional commands, e-mail: users-h...@tomcat.apache.org
