tomcat禁用webdav

在tomcat的web.xml，以及自己项目的web.xml中，均需添加以下内容：

<security-constraint>     
    <web-resource-collection>     
       <url-pattern>/*</url-pattern>     
       <http-method>PUT</http-method>     
       <http-method>DELETE</http-method>     
       <http-method>HEAD</http-method>     
       <http-method>OPTIONS</http-method>     
       <http-method>TRACE</http-method>
    </web-resource-collection>     
    <auth-constraint>     
    </auth-constraint>     
 </security-constraint>     
 <login-config>     
     <auth-method>BASIC</auth-method>     
 </login-config>

同时两者的web-app头应该写成这样：

<web-app xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance"
    xmlns="http://java.sun.com/xml/ns/javaee"
    xsi:schemaLocation="http://java.sun.com/xml/ns/javaee http://java.sun.com/xml/ns/javaee/web-app_3_0.xsd"
    id="WebApp_ID" version="3.0">

posted @ 2017-04-06 16:38 剑握在手阅读(4223) 评论(0) 编辑收藏举报

刷新页面返回顶部

剑握在手

I must know more.

tomcat禁用webdav

公告