(Access Manager 4.5 Service Pack 4 and later)
For security purposes, direct access to application.xml and extern/dist/lib/ files available in the nidp folder is restricted by default. You can remove the restriction by commenting the <security-constraint> tag in the web.xml file.
If you want to restrict access to any other file in the nidp folder, perform the following steps:
Open the /opt/novell/nids/lib/webapp/WEB-INF/web.xml file.
Under the <security-constraint> tag, add <url-pattern> or <path of the file> that you want to hide from the direct access.
The following is an example snippet:
<security-constraint>
<web-resource-collection>
<web-resource-name>Include files</web-resource-name>
<description>No direct access to include files.</description>
<url-pattern>/application.xml</url-pattern>
<url-pattern>/extern/dist/lib/*</url-pattern>
<http-method>POST</http-method>
<http-method>GET</http-method>
</web-resource-collection>
<auth-constraint />
</security-constraint>Save the file.
Restart Identity Server by running the rcnovell-idp restart command.