From 013779aedf93a6f6ff878c457de53e729540c252 Mon Sep 17 00:00:00 2001 From: vasraz Date: Wed, 7 Sep 2022 18:45:20 +0100 Subject: Fix high-severity bug 'application exposed to path traversal attack' Signed-off-by: Vasyl Razinkov Change-Id: I7f4b1e8d083cc39f8e57dcedddecc6af56fdc9c2 Issue-ID: SDC-4169 --- .../src/main/webapp/WEB-INF/web.xml | 78 ++++++++++++---------- 1 file changed, 42 insertions(+), 36 deletions(-) (limited to 'utils/webseal-simulator/src/main/webapp') diff --git a/utils/webseal-simulator/src/main/webapp/WEB-INF/web.xml b/utils/webseal-simulator/src/main/webapp/WEB-INF/web.xml index 7535e1bdf8..a293d3c883 100644 --- a/utils/webseal-simulator/src/main/webapp/WEB-INF/web.xml +++ b/utils/webseal-simulator/src/main/webapp/WEB-INF/web.xml @@ -1,40 +1,46 @@ - - - Archetype Created Web Application - - - Proxy - org.openecomp.sdc.webseal.simulator.SdcProxy - - - Proxy - /* - - - - Login - org.openecomp.sdc.webseal.simulator.Login - - - Login - /login - - - - CreateUser - org.openecomp.sdc.webseal.simulator.RequestsClient - - - CreateUser - /create - - - - login - + + + Archetype Created Web Application + + + Proxy + org.openecomp.sdc.webseal.simulator.SdcProxy + + + Proxy + /* + + + + org.eclipse.jetty.servlet.Default.dirAllowed + false + + + + Login + org.openecomp.sdc.webseal.simulator.Login + + + Login + /login + + + + CreateUser + org.openecomp.sdc.webseal.simulator.RequestsClient + + + CreateUser + /create + + + + login + -- cgit 1.2.3-korg