Restrict acessing staic data inside ear file using URL's in Websphere
Posted on 2004-10-06
We are using WAS 5.0 Base edition. Our site is form based log on. So When acessing JSP pages pages then we know whether used is signed or not using session object.
I need to implement security while acessing statics data inside EAR file. Static data PDF's word documents etc.
My questions are
1. When user types direct URL for document, then how can I check whether user is signed on to our website ot not?
2. How can expire documents viewd by user so that he won't book mark the URL's
I thinking J2EE security for acessing WEB-INF folder inside EAR file. But I am not aware what I need to do or where I can find the documentation.
Thanks in advance