----------------------------------------------------------------
BEFORE YOU POST, search the faq at <http://java.apache.org/faq/>
WHEN YOU POST, include all relevant version numbers, log files,
and configuration files. Don't make us guess your problem!!!
----------------------------------------------------------------
Hi all,
I am newbie here so kindly pardon my ignorance.I am trying to
implement a system that is very database intensive and right now all the
actions/reactions of Jserv are based on the parameters supplied by the HTML
pages using GET and POST .( I am avoiding using POST as much as possible to
avoid any malicious parameter inputs from the clients ). But the problem is
that all these parameters, the corresponding servlets and the logic is
still exposed to whoever wishes ( and is smart enough ) to see.
Is there some way i to create a black box type framework where only
the user inputs go in and request codes for actions approved for normal
users are submitted? The only thing the user sees is the input they are
supplying and some action code and nothing else.
Basically is it better to create a servlet super class that manages
all the data for the session and all the possible logic paths that a user
can follow ? - OR - would i be able to do something like this using beans ?
Anybody done this before ?
Any ideas/suggestions will be very helpful.
Thanks to all.
RVS
--
--------------------------------------------------------------
Please read the FAQ! <http://java.apache.org/faq/>
To subscribe: [EMAIL PROTECTED]
To unsubscribe: [EMAIL PROTECTED]
Archives and Other: <http://java.apache.org/main/mail.html>
Problems?: [EMAIL PROTECTED]
