File APIs for Java Developers
Manipulate DOC, XLS, PPT, PDF and many others from your application.
http://aspose.com/file-tools
The moose likes Servlets and the fly likes Security implications of using AJAX in LDAP protected web application Big Moose Saloon
  Search | Java FAQ | Recent Topics | Flagged Topics | Hot Topics | Zero Replies
Register / Login


Win a copy of OCM Java EE 6 Enterprise Architect Exam Guide this week in the OCMJEA forum!
JavaRanch » Java Forums » Java » Servlets
Bookmark "Security implications of using AJAX in LDAP protected web application" Watch "Security implications of using AJAX in LDAP protected web application" New topic
Author

Security implications of using AJAX in LDAP protected web application

marc balum
Greenhorn

Joined: Sep 25, 2008
Posts: 7
Hi Everyone,

The following are my concerns when using AJAX in my LDAP protected web application:

1) Is it OK to use AJAX in LDAP protected web application?
2) Are there implications on the security of data when using AJAX?
3) How do I handle POST requests when using AJAX in protected web application?
4) What are the pros and cons of using AJAX in protected application?

Your answers to the above issues will be highly appreciated.

Thank you so much.
Jeanne Boyarsky
internet detective
Marshal

Joined: May 26, 2003
Posts: 30392
    
150

Marc,
You need to protect all requests, not just AJAX ones. So everything you do for all your other pages applies to AJAX. Especially the parts about validating input request data (against hackers) and response data (against JSON injection.)


[Blog] [JavaRanch FAQ] [How To Ask Questions The Smart Way] [Book Promos]
Blogging on Certs: SCEA Part 1, Part 2 & 3, Core Spring 3, OCAJP, OCPJP beta, TOGAF part 1 and part 2
 
I agree. Here's the link: http://aspose.com/file-tools
 
subject: Security implications of using AJAX in LDAP protected web application