>>>>> "Andreas" == Andreas Maschke <[EMAIL PROTECTED]> writes:
Andreas> I think most applications need some preconfigurated data to startup. In
our
Andreas> application we need at least one user, one system language, one country,
one
Andreas> currency, ... So we supply a "demo database" (simply created using SQL)
Andreas> which is installed and later modified by the end users to their needs.
Andreas> And I think having a piece of code to create users oder anything else
Andreas> without authentication may be lead to a security problem.
I didn't mean it would really be completely without
authentication/authorization, it just wouldn't be done "automatically". For
instance, the password could be recorded as a parameter on the server side, and
an "unauthenticated" method could take a password as one of the arguments. It
requires a bit more manual coding (like in the old days :) ), but it would
facilitate (somewhat) remote initialization of a dataset.
--
===================================================================
David M. Karr ; Best Consulting
[EMAIL PROTECTED] ; Java/Unix/XML/C++/X ; BrainBench CJ12P (#12004)
===========================================================================
To unsubscribe, send email to [EMAIL PROTECTED] and include in the body
of the message "signoff EJB-INTEREST". For general help, send email to
[EMAIL PROTECTED] and include in the body of the message "help".
