This week's book giveaway is in the Design forum.
We're giving away four copies of Design for the Mind and have Victor S. Yocco on-line!
See this thread for details.
Win a copy of Design for the Mind this week in the Design forum!
  • Post Reply
  • Bookmark Topic Watch Topic
  • New Topic

JDBC Login Pratection

 
deca leni
Ranch Hand
Posts: 49
Java Java ME PHP
  • Mark post as helpful
  • send pies
  • Quote
  • Report post to moderator
JDBC Login Pratection

please members can anybody tell me how to or methods that we can use to protect our MS Database with userName and passward.that database must not be connected without userName and passward .how to define ruls in java code to prevent anonimus access too. thank you...
 
Jeanne Boyarsky
author & internet detective
Marshal
Posts: 34178
340
Eclipse IDE Java VI Editor
  • Mark post as helpful
  • send pies
  • Quote
  • Report post to moderator
Usually, you create a separate "system" id for accessing the database that is used by the Java application. Then you are controlling access via the application rather than the database.
 
deca leni
Ranch Hand
Posts: 49
Java Java ME PHP
  • Mark post as helpful
  • send pies
  • Quote
  • Report post to moderator
Jeanne Boyarsky wrote:Usually, you create a separate "system" id for accessing the database that is used by the Java application. Then you are controlling access via the application rather than the database.


but what do mean by separate "system" id ?
cloud you please explain me little bit more and clearly. actually I'm new to JDBC

thank you...
 
Jeanne Boyarsky
author & internet detective
Marshal
Posts: 34178
340
Eclipse IDE Java VI Editor
  • Mark post as helpful
  • send pies
  • Quote
  • Report post to moderator
I'll use this site as an example to make it more concrete. You log into this site with a user id you created. This is not an id that the database knows about. Once you log in, our forum software executes database queries on your behalf. This database id is a "system id." The database is protected against users by the application. End users do not know the database password nor can they run queries against it directly. They can only run queries the application has created and are therefore protected/safe.
 
  • Post Reply
  • Bookmark Topic Watch Topic
  • New Topic