ColdFusion Enterprise Edition provides support for JavaServer Pages (JSP) technology through the underlying J2EE application server on which it runs. Because JSP code runs outside of the realm of the ColdFusion security framework and, therefore, is not subject to ColdFusion sandbox security, you do not typically deploy JSPs in a shared, hosted environment where more than one customer shares a single server.
Disable JSP functionality
- Open cf_root/runtime/servers/default/SERVER-INF/default-web.xml in a text editor.
- Find the servlet-mapping entry for JspLicenseServlet.
- Comment out this entry, as the following example shows:
<!--
<servlet-mapping>
<servlet-name>JspLicenseServlet</servlet-name>
<url-pattern>*.jsp</url-pattern>
</servlet-mapping>
-->
- Save and close the file.
- Open the file cf_root\WEB-INF\web.xml.
- Comment out the servlet mapping, as follows:
<!--
<servlet-mapping>
<servlet-name>JspLicenseServlet</servlet-name>
<url-pattern>*.jsp</url-pattern>
</servlet-mapping>
-->
- Save and close the file.
- Restart ColdFusion.