Hello,
The following is not preventing me from accessing the associated servlet by plain HTTP.
<user-data-constraint>
<transport-guarantee>CONFIDENTIAL</transport-guarantee>
</user-data-constraint>
I was hopping that this would make only https available for this web applicaton (which by the way, is working). Am i interpreting the meaning of this flag wrongly or there's something else that needs to be activated to prevent a plain http view of the servlet ?
I'm using jboss-4.0.1sp1.
Many thanks in advance
Please ignore my question. The problem was that the web-resource-collection identification didn't match the servlet name. silly typing mistake :(