This week's book giveaway is in the OO, Patterns, UML and Refactoring forum.
We're giving away four copies of Refactoring for Software Design Smells: Managing Technical Debt and have Girish Suryanarayana, Ganesh Samarthyam & Tushar Sharma on-line!
See this thread for details.
The moose likes Struts and the fly likes Security Aspects to be considered Big Moose Saloon
  Search | Java FAQ | Recent Topics | Flagged Topics | Hot Topics | Zero Replies
Register / Login


JavaRanch » Java Forums » Frameworks » Struts
Bookmark "Security Aspects to be considered" Watch "Security Aspects to be considered" New topic
Author

Security Aspects to be considered

pritam sabnis
Greenhorn

Joined: Dec 27, 2007
Posts: 6
Hello All,
I am developing a web based application using Struts 2.
Can anyone tell me what all security aspects should i considered while developing and deploying this application.

Thanks in advance

Thanks and regards,

Pritam Sabnis
Jeanne Boyarsky
author & internet detective
Marshal

Joined: May 26, 2003
Posts: 32481
    
214

Pritam,
Not for Struts specifically, but for any web app:
- what users can logon
- what can they do
- what data can they see
- are all your pages properly secured
- have you protected against SQL Injection, XSS, CSRF, etc


[OCA 8 book] [Blog] [JavaRanch FAQ] [How To Ask Questions The Smart Way] [Book Promos]
Other Certs: SCEA Part 1, Part 2 & 3, Core Spring 3, TOGAF part 1 and part 2
 
I’ve looked at a lot of different solutions, and in my humble opinion Aspose is the way to go. Here’s the link: http://aspose.com
 
subject: Security Aspects to be considered
 
It's not a secret anymore!