framework/resources/templates/web.xml
<?xml version="1.0" encoding="UTF-8"?>
<web-app version="3.0">
<display-name>SCIPIO ERP - @component-resource-name@ Component</display-name>
<description>@component-resource-name@ Component of the SCIPIO ERP Project</description>
<!-- context-param>
<param-name>webSiteId</param-name>
<param-value>@component-name@Site</param-value>
<description>A unique ID used to look up the WebSite entity. Only for component using a WebSite entity, like [Scipio: shop]</description>
</context-param-->
<context-param>
<description>A unique name used to identify/recognize the local dispatcher for the Service Engine</description>
<param-name>localDispatcherName</param-name><param-value>@component-name@</param-value>
</context-param>
<context-param>
<description>The Name of the Entity Delegator to use, defined in entityengine.xml</description>
<param-name>entityDelegatorName</param-name><param-value>default</param-value>
</context-param>
<context-param>
<description>The location of the main-decorator screen to use for this webapp; referred to as a context variable in screen def XML files.</description>
<param-name>mainDecoratorLocation</param-name>
<param-value>component://@component-name@/widget/CommonScreens.xml</param-value>
</context-param>
<!--<context-param>
<description>SCIPIO: The location of a screen whose actions will be executed just before every new screen request
in this webapp, after context is finalized, and AFTER the context stack has been pushed - in effect, per-webapp auto-included actions.
Default: mainDecoratorLocation+#webapp-common-actions
2016-11-11: Added for 1.14.3.</description>
<param-name>renderInitScriptScreenLocation</param-name>
<param-value>component://@component-name@/widget/CommonScreens.xml#webapp-common-actions</param-value>
</context-param>-->
<!--<context-param>
<description>SCIPIO: Initial context-building script, webapp-specific version of widgetContextScripts.properties entries; runs just after those.
Has no default. In most cases renderInitScriptScreenLocation is more appropriate. 2016-11-11: Added for 1.14.3.
WARNING: This script may not be running under a database transaction (see widgetContextScripts.properties for info).</description>
<param-name>widgetContextScriptLocation</param-name>
<param-value>component://@component-name@/widget/WidgetContextScript.groovy</param-value>
</context-param>-->
<!--<context-param>
<param-name>widgetVerbose</param-name>
<param-value>false</param-value>
<description>Enable widget boundary comments. See org.ofbiz.widget.model.ModelWidget.widgetBoundaryCommentsEnabled().</description>
</context-param>-->
<context-param>
<description>Remove unnecessary whitespace from HTML output.</description>
<param-name>compressHTML</param-name>
<param-value>false</param-value>
</context-param>
<context-param>
<description>SCIPIO: Set this to false to disable the autoUserLogin cookie/session attribute (default: true) (renamed 3.0.0)</description>
<param-name>security.autoUserLogin.enabled</param-name>
<param-value></param-value>
</context-param>
<filter>
<display-name>ContextFilter</display-name>
<filter-name>ContextFilter</filter-name>
<filter-class>org.ofbiz.webapp.control.ContextFilter</filter-class>
<init-param><param-name>disableContextSecurity</param-name><param-value>N</param-value></init-param>
<init-param>
<param-name>allowedPaths</param-name>
<param-value>/error:/control:/select:/index.html:/index.jsp:/default.html:/default.jsp:/images:/includes/maincss.css</param-value>
</init-param>
<init-param><param-name>errorCode</param-name><param-value>403</param-value></init-param>
<init-param><param-name>redirectPath</param-name><param-value>/control/main</param-value></init-param>
</filter>
<filter-mapping><filter-name>ContextFilter</filter-name><url-pattern>/*</url-pattern></filter-mapping>
<listener><listener-class>org.ofbiz.webapp.control.ControlEventListener</listener-class></listener>
<listener><listener-class>org.ofbiz.webapp.control.LoginEventListener</listener-class></listener>
<!-- NOTE: not all app servers support mounting implementations of the HttpSessionActivationListener interface -->
<!-- <listener><listener-class>org.ofbiz.webapp.control.ControlActivationEventListener</listener-class></listener> -->
<servlet>
<description>Main Control Servlet</description>
<display-name>ControlServlet</display-name>
<servlet-name>ControlServlet</servlet-name>
<servlet-class>org.ofbiz.webapp.control.ControlServlet</servlet-class>
<load-on-startup>1</load-on-startup>
</servlet>
<servlet-mapping><servlet-name>ControlServlet</servlet-name><url-pattern>/control/*</url-pattern></servlet-mapping>
<session-config>
<session-timeout>60</session-timeout> <!-- in minutes -->
<cookie-config>
<http-only>true</http-only>
<secure>true</secure>
</cookie-config>
<tracking-mode>COOKIE</tracking-mode>
</session-config>
<welcome-file-list>
<welcome-file>index.jsp</welcome-file>
<welcome-file>index.html</welcome-file>
<welcome-file>index.htm</welcome-file>
</welcome-file-list>
</web-app>