Hello Everyone
I am learning
JSP and
Servlets these days.
I just read that Configuration Parameters can be placed inside the "web.xml" deployment descriptor file . Also, web.xml is not visible to the users.
I wonder whether "web.xml" is the right place to store passwords .??
My Findings :
Someone replied on stackoverflow that it is not the right place , instead
you should put them in separate file and store the location of the file in web.xml .
Also you can restrict the access to that file to root users.
I want to take reviews of
JAVA RANCH geeks on this and other Alternative Solutions iff any.
Moreover , how to restrict access to the root users.
Thanks !!!