Hi All,
I want to Restrict raw XHTML Documents from being directly accessed
I've added the security-constraint in the web.xml
.
.
.
<security-constraint>
<display-name>Restrict XHTML Documents</display-name>
<web-resource-collection>
<web-resource-name>XHTML</web-resource-name>
<url-pattern>*.xhtml</url-pattern>
</web-resource-collection>
</security-constraint>
But when I gave the following url in my browser
http://localhost:<port no.>/<application>/<page-name>.xhtml
The xhtml page is getting displayed.
All xhtml files are in the root directory
javascript - folder
.
.
*.xhtml - files
.
.
WEB-INF - folder