In a web application how can I ensure that the
jsp pages are protected from direct access from intruders?
My understanding is if we move all the jsp's inside the web-inf folder of the application they are automatically secure. Is there are any approach for resolving this?