I have a GWT application that among many things shows PDFs that are stored
on the server side. I have a security related question, as described below.
When a user logs in through a dialogue on the client side, I make a note of
the userid they entered while processing the login on the server
On 1/7/2013 8:43 AM, Flying-w wrote:
I have a GWT application that among many things shows PDFs that are
stored on the server side. I have a security related question, as
described below.
When a user logs in through a dialogue on the client side, I make a
note of the userid they entered
Thanks for the reply. The PDF content is highly valuable, so each request
must be authenticated and the pdf content must be delivered to the browser
securely.
Recommendations for other delivery methods?
Perhaps the ideal solution is to have the PDF content delivered in the
response to a GWT
On 01/07/2013 09:23 AM, Flying-w wrote:
Thanks for the reply. The PDF content is highly valuable, so each
request must be authenticated and the pdf content must be delivered to
the browser securely.
Recommendations for other delivery methods?
There is no reason to deliver the content
Once again thanks for the suggestions. Email won't work here however, as
the GWT application is an interactive workflow management tool. When a
user wishes to see a PDF, they need to see it right now rather than wait
for a link to be supplied via email. If browser is the only way forward,
If the content is highly sensitive, then using adobe's own method of
securing it would be the simplest method. Encrypting / Password protecting
a pdf file is pretty basic security that would stop the casual hacker.
Your service needs to prevent request record and replay attacks.
Viewing
On Mon, Jan 7, 2013 at 2:23 PM, Flying-w simonjone...@googlemail.comwrote:
Once again thanks for the suggestions. Email won't work here however, as
the GWT application is an interactive workflow management tool. When a
user wishes to see a PDF, they need to see it right now rather than wait