Thanks Pete. That almost gets me there. However, that changes the path for all contexts on that server. I was only looking the change the path for one context.
In fact, why is the lucee-web-directory param in /opt/lucee/tomcat/conf/web.xml commented out by default? Seems like the extra security of WEB-INF being outside each web root would be the best setup with each new installation.
I know this is a whish of other Lucee core devs too. The main problem is, that if you just uncomment that line, the Lucee installation willl not run and will throw 500 errors, because then the low privileged user running Tomcat won’t have permissions to create/write that web-inf folder. That means: The installer (also) would need creating that directory, give the user running Tomcat writing privileges to it. Another point is, that this directory entry needs to be created dynamically depending on the OS somewhere. I think, the best place would be Tomcats users home directory (or maybe somewhere else, depending on the OS administrators preference). You may need to create a new dialogue at the installer, prefilling the users home directory in that manner that the OS administrator would know or change that directory location. If you want to see the insallers code, it’s open source as a Lucee github repository.