On 1/6/11 4:30 PM, Markus Joschko wrote: > Hi, > I noticed that I can easily GET the esp/jsp files below my apps directory. > > How can they be secured so that nobody can easily fetch them?
You could obviously do this an ACL (the script resolver can be configured to use a specific user to read scripts if you configured the repository such that end users couldn't read the script files). The other, IMHO easier, option is to do this is Apache configuration and use mod_proxy. Justin > > Thanks, > Markus
