Re: [Wicket-user] Change default prefix for url

Fri, 03 Nov 2006 00:16:35 -0800

and when they see ?portal:interface=:4:some.path:ILinkListener that doesnt look like wicket?

if someone is going to go through enough trouble to figure out what framework you are using they will figure it out just by googling ILinkListener or another interface name we encode into the url.

or look into html for our tell tale window.name trick.

wicket is pretty secure by default, much more so then other frameworks for two reasons

1) nonbookmarkable urls are session-relative, so unless someone hijacks someone elses session they cant really do much.
2) there are no request parameters such as ids, etc encoded into the url for nonbookmarkable pages

there is also a CryptedUrlWebRequestCodingStrategy

security by obscurity is never a good idea.

-igor


On 11/3/06, [EMAIL PROTECTED] <[EMAIL PROTECTED] > wrote:
Hi all !

Is there a way to change the default prefix for url before instances? My current URLs look like:

http://127.0.0.1/application?wicket:interface=:22::

How can I change the wicket prefix so the URL is looking like this:

http://127.0.0.1/application?portal:interface=:22::

I need this for security. Visitors should not know that the application is using wicket.

Thank you very much,

Maciej Bednarz

-------------------------------------------------------------------------
Using Tomcat but need to do more? Need to support web services, security?
Get stuff done quickly with pre-integrated technology to make your job easier
Download IBM WebSphere Application Server v.1.0.1 based on Apache Geronimo
http://sel.as-us.falkag.net/sel?cmd=lnk&kid=120709&bid=263057&dat=121642
_______________________________________________
Wicket-user mailing list
Wicket-user@lists.sourceforge.net
https://lists.sourceforge.net/lists/listinfo/wicket-user 

-------------------------------------------------------------------------
Using Tomcat but need to do more? Need to support web services, security?
Get stuff done quickly with pre-integrated technology to make your job easier
Download IBM WebSphere Application Server v.1.0.1 based on Apache Geronimo
http://sel.as-us.falkag.net/sel?cmd=lnk&kid=120709&bid=263057&dat=121642
_______________________________________________
Wicket-user mailing list
Wicket-user@lists.sourceforge.net
https://lists.sourceforge.net/lists/listinfo/wicket-user

Reply via email to