If you talk about GWT, client side allways means inside your browser. GWT applications are like Desktop applications, which are compiled to JavaScript and running inside a browser. The server has to provide a service interface, which can be accessed through HTTP. This could be a REST / JSON webservice. The GWT application (running in a browser) calls this webservice for data or sends updates to the service.
I don't know, how you can create a RESTful webservice with .net, but this means, that no HTML is generated on the server, the server never knows, what the client (inside a browser) is really doing and showing. The server's role is just to provide some raw data. So the important thing to learn for you is, that GWT only runs inside the browser and not on the server. I can't tell you exactly, where you should place your firewall in this scenario, but I expect that it's filtering all the http requests coming from outside of your company. So the result would be, that everything behind the firewall runs on a server, and everything in front of the firewall runs inside a browser. Regards Jan Ehrhardt On Tue, Dec 15, 2009 at 11:52 PM, Robert Domingo <[email protected]>wrote: > Hello Mike, > > Thank you for the explanation of client-side versus server-side for my > initial question. Looks like I'm really off on the understanding of > this technology. If you can school me a little more I will appreciate > it since I'm not versed in Java and I need to especially understand > non-MS technology stacks ... > > 1) Does the below mean a proxy of a Java class on a server behind a > firewall is on the webserver in the DMZ? When you say client-side > proxy you don't mean client as in browser-client but more the > webserver in this case, right? > >In GWT-RPC, a client side proxy of a server based Java class is > instantiated. When this is > >compiled into Javascript on the client this is "translated" into a > > client side XMLHTTP request, posting data to a specific server side > > servlet. > > 2) I tried to search and read up on security articles regarding AJAX > on the web, including the security article posted on the 'article' > section of this Google Group, but without good JAVA understanding I > may be confusing myself. With your reply below but more at a basic > level can I create a dynamic and interactive presentation tier using > GWT but still make AJAX very secure to talk to business logic tier and > data tier? > >If your server is not Java, then your options move to GWT > > Form Posting, which will end up looking very similar to the old ASP/ > >JSP form post servers, or there is a GWT-JSON method that allows > > submission of data to many brand servers using Javascript Object > > Notation. > > 3) What is your recommended technology stack on the webserver in the > DMZ and application server behind the firewall? If there are so many > combos what are some combination? > > So to answer your question shorter: it depends on the technology > > stack that your server has. > > 4) If you can provide me your favorite links to where I can try to > self-educate myself on using GWT in the presentation tier and how GWT- > RPC/JSON/etc can talk securely to the business logic on another server > securely I'll appreciate it > > Although I won't be developing the system itself I want to understand > the technology the developers will using and the infrastructure they > will be deployed on. I really appreciate your input. > > Sincerely, > Robert > > > Good luck! > > > > On Dec 14, 2:52 pm, Robert Domingo <[email protected]> wrote: > > > > > Hello all, > > > > > I am trying to understand GWT and AJAX development. I'm not a > > > programmer any more but worked closely with developers who worked with > > > Microsoft tools. > > > > > Initially, or should I say under legacy code, they wrote ASP on IIS > > > webserver while they wrote DLLs with VisualBasic6 to register on the > > > server behind the firewall. They will then use Microsoft's COM+ > > > Manager so that they export and install a proxy of the DLL (stub?) on > > > the IIS so that depending on user interaction, objects behind the > > > firewall can securely be instantiated by the ASP. In the modern times > > > that was replaced with the ASP.NET on the front with webservices > > > (VB.NET, C#) behind the firewall and utilizing the Microsoft .NET > > > framework. > > > > > Sorry above was a long background but the actual question is simpler: > > > so I'm trying to understand what is the equivalent in the world of > > > AJAX & GWT for instantiating an object from the front end? > > > > > Thank you. > > > Robert > > -- > > You received this message because you are subscribed to the Google Groups > "Google Web Toolkit" group. > To post to this group, send email to [email protected]. > To unsubscribe from this group, send email to > [email protected]<google-web-toolkit%[email protected]> > . > For more options, visit this group at > http://groups.google.com/group/google-web-toolkit?hl=en. > > > -- You received this message because you are subscribed to the Google Groups "Google Web Toolkit" group. To post to this group, send email to [email protected]. To unsubscribe from this group, send email to [email protected]. For more options, visit this group at http://groups.google.com/group/google-web-toolkit?hl=en.
