Does anyone know if (and how) public access (no cookies required) can be granted to a subdir of a packages www directory ?
OpenACS 5.0 and later supports a resources directory for packages. This is located at /packages/your-package-key/www/resources/. I believe that no authentication checks are performed for items in the resources directory (it's intended for things like stylesheets, images and JARs). You can also specify the url to fetch items from this directory as /resources/your-package-key/foo.jar instead of /path/to/your/package/instance/resources/foo.jar. I'm not sure whether this is necessary to bypass the authentication checks in the request processor or not.
