Granny's Programming Pearls
"inside of every large program is a small program struggling to get out"
JavaRanch.com/granny.jsp
Win a copy of Think Java: How to Think Like a Computer Scientist this week in the Java in General forum!
  • Post Reply
  • Bookmark Topic Watch Topic
  • New Topic

How to restrict url copy and past (Security threat)

 
leo jacob
Greenhorn
Posts: 17
  • Mark post as helpful
  • send pies
  • Quote
  • Report post to moderator
Hi,

I am working on a web application. Application is having role based access. If some one logged into this application and then copy the url and paste it to another or same browser , application is opening from there without asking for authentication. I want to restrict the same as it is a security threat for the application.
I am using struts2 framework with glassfish server.

Please let me know any way to implement restriction. Thanks in advance.
 
Pyla Rao
Ranch Hand
Posts: 51
  • Mark post as helpful
  • send pies
  • Quote
  • Report post to moderator
The scenario explained by you ,its under comes in web security-authorization. you need to implements security constraints in web.xml files for roles.
Before writing code we need to understand web security of java ee web application.

here the best tutorials for that : http://docs.oracle.com/javaee/6/tutorial/doc/bnbwj.html
 
  • Post Reply
  • Bookmark Topic Watch Topic
  • New Topic