Im trying to use a filter to secure my application. And I've configured my web.xml with the following mapping .
This secures all the jsp pages in the pages folder.The filter checks for user credentials from the session.
However , I'm not being able to secure my servlets and as my pages are redirected through them after submit , it becomes easy for a person not logged in to view the state of the previous user through the servlet . I try to do this
where where the package a.b.c contains all my servlets that need secure access. However cant seem to get it to work.
Any help would be appreciated.