[sending back to the list] On 4/26/05, Frank McCreedy <frankm@xxxxxxxxxxx> wrote: > Thanks very much for the response. Any reason why Apache ignores that > part of the URL? I don't mean that as a criticism, just wondering... > > It will probably be easier in my case just to make a separate servlet to > handle the admin stuff. I'm not sure about the original idea -- query string is always stored separately from the url-path in apache, so it could have just been an oversight that they were not both applied. But note that it would be quite dangerous to limit access based on query strings. For example, I bet your servlet would be quite happy to let you get around the restrictions by accepting requests like MyServlet?foo=bar&type=admin Joshua. --------------------------------------------------------------------- The official User-To-User support forum of the Apache HTTP Server Project. See <URL:http://httpd.apache.org/userslist.html> for more info. To unsubscribe, e-mail: users-unsubscribe@xxxxxxxxxxxxxxxx " from the digest: users-digest-unsubscribe@xxxxxxxxxxxxxxxx For additional commands, e-mail: users-help@xxxxxxxxxxxxxxxx
|