Java EE (Java Enterprise Edition) General Discussion

Announcement

For appeals, questions and feedback about Oracle Forums, please email oracle-forums-moderators_us@oracle.com. Technical questions should be asked in the appropriate category. Thank you!

Interested in getting your voice heard by members of the Developer Marketing team at Oracle? Check out this post for AppDev or this post for AI focus group information.

Tomcat, htaccess, can it be done?

843836Apr 30 2004 — edited May 3 2004

Hi all,

I'm running tomcat via apache via the appropriate connector.

I had a directory under a web application, which I secured using htaccess. Fine, got the password working and everything, apache correctly protected the directory itself, and html contents.

Then I put a .jsp page in there. I can access the jsp page directly without any protection. Apache does not try and prevent it.

I'm sure this is because apache sees that the request if for a jsp file and passess control straight over to tomcat, without invoking its own security policy.

Can I force apache to apply htaccess rules BEFORE passing over control to tomcat?

Anyone got htaccess working by using tomcat?

Many thanks...

Locked Post

New comments cannot be posted to this locked post.

Locked on May 31 2004

Added on Apr 30 2004

#javaserver-pages-jsp-and-jstl

19 comments

433 views

Java EE (Java Enterprise Edition) General Discussion

Tomcat, htaccess, can it be done?

Comments

Post Details