• Status: Solved
  • Priority: Medium
  • Security: Public
  • Views: 1041
  • Last Modified:

Lock down the .war file

Hi,
I have developed a JSP application that i want to give to a client to test. I do not want the client to be able to see the code. Is it possible to password protect the war file?

Thanks
0
gayuk
Asked:
gayuk
  • 4
  • 3
  • 2
  • +1
1 Solution
 
cchagantiCommented:
You can compile the JSP files (using JSPC) and while WARring, remove all the original JSP files from the WAR file.
they will just see the compiled code. (I am assuming that they are deploying the war file given by you)...

0
 
Ryan ChongCommented:
Try zip your war file with Winzip, and set a password, for example.
0
 
gayukAuthor Commented:
ryancys,
I tried that but it does not work. The app server tries to unzip it for recompilation and that fails..
0
VIDEO: THE CONCERTO CLOUD FOR HEALTHCARE

Modern healthcare requires a modern cloud. View this brief video to understand how the Concerto Cloud for Healthcare can help your organization.

 
Ryan ChongCommented:
What i mean is 1st try to compress your files into a war file 1st, and then simply use any zipping tool (in this case, Winzip) to zip the war file and make it password protected. Actually it's the way i've done for my previous client all the time when i deployed the jsp applications.
0
 
gayukAuthor Commented:
ryancys,

I am not sure i understand. You can also create a war file through the Zip utility..Even if I were to create a war file and zip it up, would you unzip it before deploying it..

When you did this.. did you just put the zip file in the appropriate directory and leave it at that or did you unzip it and then deploy it?
I am sorry if is sound confused.. I am :-)

Thanks
0
 
Ryan ChongCommented:
>>I am not sure i understand. You can also create a war file through the Zip utility
Actually i'm not too sure about that, really.. ;-)

Yet, I used to create war file from command prompt, like:

C:\jdk\bin\myApp>c:\jdk\bin\jar cvf c:\jdk\bin\myApp.war *.*

where i usually copy the whole application folder to bin folder, and then i zip the created myApp.war file with Winzip, and make it password protected.

and once it's deployed on my client's end. He will unzip the file, and then the client get the myApp.war file. And he will restart it's Servlet Container (Tomcat in this case), and then the war file is 'unwar'ed.

The above may also sounds weird, those are what i learn myself and it works for me so far for this couple of years ;-)

Correct me or other guys may have better approach 8-)
0
 
gayukAuthor Commented:
Okay...
I see what you mean.. However, what i want to do is to secure the war file itself. I don't want the client to see the application code..
0
 
gayukAuthor Commented:
cchangti,
Does using JSPC allow me to deploy on different servlet containers?.. I see this as a good option but is it supported by other app severs other than tomcat?

Thanks
0
 
cchagantiCommented:
Yes, it is supported. But, you need to jspc with different application servers (effectively creating one war file per app server)...
for example you will use weblogic.jspc xyz.war for weblogic etc...,
0
 
moduloCommented:
PAQed - no points refunded (of 25)

modulo
Community Support Moderator
0

Featured Post

Industry Leaders: We Want Your Opinion!

We value your feedback.

Take our survey and automatically be enter to win anyone of the following:
Yeti Cooler, Amazon eGift Card, and Movie eGift Card!

  • 4
  • 3
  • 2
  • +1
Tackle projects and never again get stuck behind a technical roadblock.
Join Now