Re: Best practice for protecting JSPs

Lukasz Lenart Mon, 01 Jul 2013 02:05:34 -0700

2013/7/1 Antonio Sánchez <juntandolin...@gmail.com>:
> What do you mean with 'fake' auth. constraints?


<security-constraint>
  <display-name>No access</display-name>
  <web-resource-name>JSP</web-resource-name>
  <web-resource-collection>
      <url-pattern>*.jsp</url-pattern>
  </web-resource-collection>
  <auth-constraint>
    <role-name>no-jsp-access-possib;e</role-name>
  </auth-constraint>
</security-constraint>


Regards
-- 
Łukasz
+ 48 606 323 122 http://www.lenart.org.pl/

---------------------------------------------------------------------
To unsubscribe, e-mail: user-unsubscr...@struts.apache.org
For additional commands, e-mail: user-h...@struts.apache.org

Re: Best practice for protecting JSPs

Reply via email to