How to Block All Direct Calls to Servlets at Both HTTP and OC4J Level
(Doc ID 400522.1)
Last updated on FEBRUARY 13, 2024
Applies to:
Oracle Containers for J2EE - Version 9.0.4.0.0 and laterInformation in this document applies to any platform.
Goal
How to block all direct calls to servlet methods?
Calls to OC4J of the form below returns the corresponding file, including any system file:
http://<host>:<port>/appname/servlet/returnfile?file_path=/any/path/file.name
Solution
To view full details, sign in with your My Oracle Support account. |
|
Don't have a My Oracle Support account? Click to get started! |
In this Document
Goal |
Solution |
HTTP Server level |
OC4J level |
References |