Hi and thanks to everybody for your answers,

I am using seam 2.1.1 GA on jboss-4.2.3 GA for my web application. I have configured an external directory (virtual directory) for serving static external files (images and videos), these resources must have access control, i also did this by adding security-constraint in web.xml of this virtual directory (http://seamframework.org/Community/StaticPdfDocsInSeamApplicationWithAuthenticationAuthorization).

But the problem is that every user is denied to access those resources, i would like only my application to access them or only the users already logged in. Can you give me some guide lines, please?. Any help is really appreciated.

Regards,
Vladimir Albis