From: Tim V. <ti...@ad...> - 2006-05-29 12:11:50
|
On 29/05/2006, at 6:24 AM, Silvio Bierman wrote: > > Hello greg, > > Actually, we do not use web-apps but embed Jetty and configure it > manually. > We put private stuff in WEB-INF because that is not accessible. If > you move > the protection to the WebAppContext, how do we protect that stuff > explicitly? The majority of the code is actually in "ContextHandler". If you have a ContextHandler somewhere in your chain, you just need to override "isProtectedTarget". If you don't have a ContextHandler, add one :) |