I'm using Tomcat 6 to serve a web application that consists of a bunch of JSF
pages and a bunch of static HTML help files. The web application uses
authentication, and the JSF pages are not accessible unless you first log in
with a username and password. So far so good. But the static HTML help files,
by virtue of being static, are accessible to anyone, authenticated or not.

Is there any way to place the web application's authentication mechanism in
front of the static HTML, so that it's accessible only to users who are
logged in? I've read through the tomcat configuration documentation, but
there doesn't seem to be any feature I can exploit to achieve this. Perhaps I
am missing something simple, or there is another way that doesn't involve
tomcat configuration, or perhaps I will have to modify or extend the default
servlet. Or maybe it isn't possible with Tomcat alone. Any ideas?
--
Richard

---------------------------------------------------------------------
To start a new topic, e-mail: users@(protected)
To unsubscribe, e-mail: users-unsubscribe@(protected)
For additional commands, e-mail: users-help@(protected)