What do you mean with 'fake' auth. constraints?
El Lunes, 1 de julio de 2013 10:38:56 Lukasz Lenart escribió: > 2013/7/1 Antonio Sánchez <juntandolin...@gmail.com>: > > I need to protect JSPs. Some options: > > > > 1. Put JSPs under WEB-INF and, optionally, use the conventions plugin. > > > > 2. Declare authorization constraints in web.xml. > > These two options are the best to avoid direct access to JSPs - not > all containers block access to resources in WEB-INF and fake auth > constraints will sole that problem and it's an ultimate solution. > > > Regards
