Re: Disable direct acces to vm's when using velocity + struts +tiles

Will Glass-Husain Mon, 03 Jan 2005 12:27:03 -0800

If you are using Apache as a front-end to Tomcat, you can do all kinds of great things to control access and/or rewrite URLS.

Here's a simple example:
(note wildcards will also work).

<Directory /home/httpd/vhosts/www/httpdocs/templates>
  deny from all
  AllowOverride None
</Directory>

WILL

----- Original Message ----- From: "Mike Kienenberger" <[EMAIL PROTECTED]> To: "Velocity Users List" <[email protected]> Cc: "Velocity Users List" <[email protected]> Sent: Monday, January 03, 2005 12:18 PM Subject: Re: Disable direct acces to vm's when using velocity + struts +tiles

Matt Higgins <[EMAIL PROTECTED]> wrote:

Is it possible to disable direct access to vm files ? When using
velocity and tiles, the user never sees the .vm but if you know the
correct url you could access

/myapp/pages/foo/template.vm

This would render a bogus pages as it did not go through the tiles
processor or any of my struts actions.

I think that anything you put into WEB-INF is no longer directly accessible.

My velocity templates are in ./WEB-INF/pages and other such subdirectories.

-Mike

---------------------------------------------------------------------
To unsubscribe, e-mail: [EMAIL PROTECTED]
For additional commands, e-mail: [EMAIL PROTECTED]

---------------------------------------------------------------------
To unsubscribe, e-mail: [EMAIL PROTECTED]
For additional commands, e-mail: [EMAIL PROTECTED]

Re: Disable direct acces to vm's when using velocity + struts +tiles

Reply via email to