How can I secure only some of the pages of a web a开发者_开发技巧pplication running on glassfish V3?
In your web.xml:
<security-constraint>
<display-name>Security Settings</display-name>
<web-resource-collection>
<web-resource-name>SSL Pages</web-resource-name>
<description/>
<url-pattern>/*.jsp</url-pattern>
<http-method>GET</http-method>
<http-method>POST</http-method>
</web-resource-collection>
<user-data-constraint>
<description>CONFIDENTIAL requires SSL</description>
<transport-guarantee>CONFIDENTIAL</transport-guarantee>
</user-data-constraint>
</security-constraint>
change the url-pattern to whatever you need.
We need to add a filter further in configuration.
check it here
精彩评论