The standard security options in web.xml work fine. The security rules only apply to incoming requests, not to internal forwards, so Maverick still works.
You can try blocking access to *.jsp, or you can put all your JSPs under a directory and block access to that directory. Here's a page that describes the web.xml settings: http://www.onjava.com/pub/a/onjava/2001/08/06/webform.html Jeff Schnitzer [EMAIL PROTECTED] > -----Original Message----- > From: Shackelford, John-Mason [mailto:[EMAIL PROTECTED]] > Sent: Friday, December 20, 2002 7:25 AM > To: '[EMAIL PROTECTED]' > Subject: [Mav-user] prevent jsps from being called directly > > Is there a way to set up my web app so that JSP cannot be called directly > but are only rendered as views via Maverick's dispatcher? > > It seems like between the web.xml file and perhaps an additional servlet > one > ought to be able to do this, but I've not thought it through. I started by > thinking I could write a jsp tag that would forward a incoming requests to > page where no model was set in the request, but this seems messy-- > especially > in an app that has many JSPs. > > What techniques are others using? > > > John-Mason Shackelford > > Software Developer > NCS Pearson - Measurement Services > 2510 North Dodge St. > Iowa City, IA 52245 > 319-354-9200x6214 > [EMAIL PROTECTED] > > > ************************************************************************ ** > ** > This email may contain confidential material. > If you were not an intended recipient, > Please notify the sender and delete all copies. > We may monitor email to and from our network. > ************************************************************************ ** > ** > > > ------------------------------------------------------- > This SF.NET email is sponsored by: The Best Geek Holiday Gifts! > Time is running out! Thinkgeek.com has the coolest gifts for > your favorite geek. Let your fingers do the typing. Visit Now. > T H I N K G E E K . C O M http://www.thinkgeek.com/sf/ > [INVALID FOOTER] ------------------------------------------------------- This SF.NET email is sponsored by: The Best Geek Holiday Gifts! Time is running out! Thinkgeek.com has the coolest gifts for your favorite geek. Let your fingers do the typing. Visit Now. T H I N K G E E K . C O M http://www.thinkgeek.com/sf/ [INVALID FOOTER]
