Thx for your quick response. Of course the server shouldn't allow operations that the user isn't allowed to. I just wanted to know if it's possible to serve the browser only the code he is allowed to see. But you're right, even if an attacker can see methods it would be useless for him as long as the execution of functions is only allowed for certain roles or users.
-- You received this message because you are subscribed to the Google Groups "Google Web Toolkit" group. To post to this group, send email to [email protected]. To unsubscribe from this group, send email to [email protected]. For more options, visit this group at http://groups.google.com/group/google-web-toolkit?hl=en.
