Hi, On 3 dec 2002 you wrote:
e> If you make common invisible to the web, i.e. e> http://<yourdomain>/common/<yourjsp>.jsp is invalid then I agree. e> Otherwise you are risking shortcuts bypassing the action classes. If e> you have jsp's that are directly executable by all means put them in a e> public space. That's exactly what my problem is. Is there a way to both use modules (sub-apps) and protect jsps under WEB-INF? In his article "Jakarta Struts: Seven Lessons from the Trenches" on onjava.com Chuck Cavaness recommends these solutions, but he doesn't give any examples for using both of them simultaneously. -- MK -- To unsubscribe, e-mail: <mailto:[EMAIL PROTECTED]> For additional commands, e-mail: <mailto:[EMAIL PROTECTED]>
