|Re: [jetty-users] misconfigured jetty displays source to browser|
Look in $JETTY_HOME/etc/webdefault.xml at the DefaultServlet settings. dirAllowed=true by default which permits directory listing. Set it to false, and then remember to apply that file to your contexts (because by default jetty resovles webdefault.xml from inside the jetty-webapp.jar in $JETTY_HOME/lib). Jan On 28 February 2013 13:57, S Ahmed <sahmed1020@xxxxxxxxx> wrote: > I'm having issues with getting jetty working when building a fat jar (but > that's another story). > > What I am concerned about is, when it is misconfigured, it outputs my > directory like this: > > http://img15.imageshack.us/img15/7079/screenshot20130227at953.png > > So when I click on a link, I can see my properties file etc. which may > contain sensitive information. > > Is there a way to prevent this? > > I mean, mistakes can always happen during a deploy so dont' want to get > caught like this :) > > _______________________________________________ > jetty-users mailing list > jetty-users@xxxxxxxxxxx > https://dev.eclipse.org/mailman/listinfo/jetty-users > -- Jan Bartel <janb@xxxxxxxxxxx> www.webtide.com – Developer advice, services and support from the Jetty & CometD experts.
Back to the top