Support Forums: Message List - A Preferences API Implementation for Web Applications

Support Forums: Message List - A Preferences API Implementation for Web Applications http://www.theserverside.com Most recent forum messages en Jive Forums Silver 5.5.30 (www.jivesoftware.com) Tue, 18 Jun 2013 03:19:11 -0400 Re: Nice, some security problems, wrote a test with IT Mill Tool http://www.theserverside.com/discussions/thread.tss?thread_id=47886 While the idea of the preferences servlet implementation is good, I'd consider some other than filesystem storage. Also running it as a filter doesn't seem necessary and creates problems for setting the user name, if using authenticated...]]> Sun, 23 Dec 2007 09:43:14 -0500 Sun, 23 Dec 2007 09:43:14 -0500 Sun, 23 Dec 2007 09:43:14 -0500 Dec 23, 2007 Holger Engels 0 Nice, some security problems, wrote a test with IT Mill Toolkit http://www.theserverside.com/discussions/thread.tss?thread_id=47886 Sun, 23 Dec 2007 07:18:42 -0500 Sun, 23 Dec 2007 07:18:42 -0500 Sun, 23 Dec 2007 07:18:42 -0500 Dec 23, 2007 Marko Gr??nroos 1 Re: A Preferences API Implementation for Web Applications http://www.theserverside.com/discussions/thread.tss?thread_id=47886 Fri, 21 Dec 2007 06:16:10 -0500 Fri, 21 Dec 2007 06:16:10 -0500 Fri, 21 Dec 2007 06:16:10 -0500 Dec 21, 2007 Christian Kochs 0 Re: Administration http://www.theserverside.com/discussions/thread.tss?thread_id=47886 Fri, 21 Dec 2007 02:24:13 -0500 Fri, 21 Dec 2007 02:24:13 -0500 Fri, 21 Dec 2007 02:24:13 -0500 Dec 21, 2007 Holger Engels 0 Administration http://www.theserverside.com/discussions/thread.tss?thread_id=47886 Thu, 20 Dec 2007 15:56:00 -0500 Thu, 20 Dec 2007 15:56:00 -0500 Thu, 20 Dec 2007 15:56:00 -0500 Dec 20, 2007 Deepak Parbhoo 1 Re: A Preferences API Implementation for Web Applications http://www.theserverside.com/discussions/thread.tss?thread_id=47886

In this case, ServletPreferences fall back to identifying the user via a unique ID stored in a Cookie.

Have you taken any steps to secure this solution to avoid "any user" from accessing other users...]]> Thu, 20 Dec 2007 08:53:25 -0500 Thu, 20 Dec 2007 08:53:25 -0500 Thu, 20 Dec 2007 08:53:25 -0500 Dec 20, 2007 John Brand 1 Re: A Preferences API Implementation for Web Applications http://www.theserverside.com/discussions/thread.tss?thread_id=47886
In this case, ServletPreferences fall back to identifying the user via a unique ID stored in a Cookie.

Have you taken any steps to secure this solution to avoid "any user" from accessing other users...]]> Thu, 20 Dec 2007 04:37:29 -0500 Thu, 20 Dec 2007 04:37:29 -0500 Thu, 20 Dec 2007 04:37:29 -0500 Dec 20, 2007 Victor Ott 2 Re: A Preferences API Implementation for Web Applications http://www.theserverside.com/discussions/thread.tss?thread_id=47886 In this case, ServletPreferences fall back to identifying the user via a unique ID stored in a Cookie.

Have you taken any steps to secure this solution to avoid "any user" from accessing other users preferences?]]> Thu, 20 Dec 2007 03:15:54 -0500 Thu, 20 Dec 2007 03:15:54 -0500 Thu, 20 Dec 2007 03:15:54 -0500 Dec 20, 2007 John Brand 3 Re: Storing the preferences in cookies http://www.theserverside.com/discussions/thread.tss?thread_id=47886 Thu, 20 Dec 2007 02:56:02 -0500 Thu, 20 Dec 2007 02:56:02 -0500 Thu, 20 Dec 2007 02:56:02 -0500 Dec 20, 2007 Holger Engels 0 Re: A Preferences API Implementation for Web Applications http://www.theserverside.com/discussions/thread.tss?thread_id=47886 Thu, 20 Dec 2007 01:04:54 -0500 Thu, 20 Dec 2007 01:04:54 -0500 Thu, 20 Dec 2007 01:04:54 -0500 Dec 20, 2007 Romen Law 1 Re: Storage http://www.theserverside.com/discussions/thread.tss?thread_id=47886 The prefs API by default uses the native store for preferences of the OS it's running on. On Windows it uses the registry. On OSX it uses .plist in ~/Library/Preferences. For this port they've overridden that behavior and store the...]]> Wed, 19 Dec 2007 13:36:21 -0500 Wed, 19 Dec 2007 13:36:21 -0500 Wed, 19 Dec 2007 13:36:21 -0500 Dec 19, 2007 Thai Dang Vu 0 Storage http://www.theserverside.com/discussions/thread.tss?thread_id=47886 Wed, 19 Dec 2007 09:43:19 -0500 Wed, 19 Dec 2007 09:43:19 -0500 Wed, 19 Dec 2007 09:43:19 -0500 Dec 19, 2007 Tracy Snell 1 Re: A Preferences API Implementation for Web Applications http://www.theserverside.com/discussions/thread.tss?thread_id=47886 Wed, 19 Dec 2007 09:20:30 -0500 Wed, 19 Dec 2007 09:20:30 -0500 Wed, 19 Dec 2007 09:20:30 -0500 Dec 19, 2007 Thai Dang Vu 2 A Preferences API Implementation for Web Applications http://www.theserverside.com/discussions/thread.tss?thread_id=47886 Java Preferences API provides a convenient and backend-neutral way of storing and retrieving simple data, especially user preferences, without requiring the application...]]> Wed, 19 Dec 2007 08:23:33 -0500 Wed, 19 Dec 2007 08:23:33 -0500 Wed, 19 Dec 2007 08:23:33 -0500 Dec 19, 2007 Holger Engels 13