Hello Luiz, Why don't you put your "conf" directory under WEB-INF? That is restricted by default. Your app will still have complete programmatic access to it, but it won't be accessible via the web which is exactly what you want.
Jake Wednesday, December 11, 2002, 10:12:33 AM, you wrote: LR> Hi everybody, LR> I'd like to know if there's anyway to deny acess to a specific directory of LR> a web-app using only TomCat through config in web.xml. Example, in a web-app LR> "test" there's a directory called "conf" (<CATALINA_HOME>/webapps/test/conf) LR> with some configurations file so I don�t want users accessing this directory LR> via URL. LR> I tried to use <security-constraint> but I cannot do so much. LR> Luiz Ricardo LR> -- LR> To unsubscribe, e-mail: <mailto:[EMAIL PROTECTED]> LR> For additional commands, e-mail: <mailto:[EMAIL PROTECTED]> -- Best regards, Jacob mailto:[EMAIL PROTECTED] -- To unsubscribe, e-mail: <mailto:[EMAIL PROTECTED]> For additional commands, e-mail: <mailto:[EMAIL PROTECTED]>
