If you are using container authentication, just add the image directory to your security restriction, and only authenticated users will have access to the images.
If your authentication scheme is different, but you can access the credentials data from the request, you could implement a filter that denies access to non-authenticated requests, and map the filter to the images directory. You will find more information on both subjects in the Servlet Specification :-)
Hope this helps you, Rodrigo Ruiz
Kiran Patel wrote:
I am using jsp and tomcat 4.1 for my web application. My application is viewing image which is in the webapps/image folder. This image can also be viewed from the internet by just typing the url. I want to block this since these are the confidential images. Does anybody know how to do that. Thanks in advance.
Kiran Patel
--------------------------------------------------------------------- To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
