File APIs for Java Developers
Manipulate DOC, XLS, PPT, PDF and many others from your application.
The moose likes Websphere and the fly likes Securing Uploaded files.. Big Moose Saloon
  Search | Java FAQ | Recent Topics | Flagged Topics | Hot Topics | Zero Replies
Register / Login
JavaRanch » Java Forums » Products » Websphere
Bookmark "Securing Uploaded files.." Watch "Securing Uploaded files.." New topic

Securing Uploaded files..

Bhiku Mhatre
Ranch Hand

Joined: Apr 08, 2002
Posts: 127
We are developing an intranet project where administrator can upload files.The files are stored in file system. The access to these should be controlled depending on the rights.But at the moment any body who knows the link can view it. How can I control the access to the files ??
Secondly, We are also developing a spying tool. But direst access to the files bypass our spying servlets and is rendered ineffective.
We are using WAS 4.0.AE.
Can any body help ???

The difference between winner and loser is making things happen and letting things happen.
james edwin
Ranch Hand

Joined: Nov 22, 2001
Posts: 393
Hi Pappu Pager,
01) regarding your first question define secuirty role in your deployment descriptor,there u can define which user has which rights.
02) use any kind of secuity mechanish which WAS(AE)4.0 supports.
Basic authentication
Digest authentication - WAs does not suport this.
Form authentication
Client certificate
I hope abv helps.

(pls change your name,as this aganist naming policy)
[ April 18, 2002: Message edited by: james edwin ]

Bhiku Mhatre
Ranch Hand

Joined: Apr 08, 2002
Posts: 127
Thanks James for your reply.
But can you provide me a link that explains me step-by-step how to do it ??
Looking forward to your reply..

As suggested I have changed my Screen-Name
I agree. Here's the link:
subject: Securing Uploaded files..
It's not a secret anymore!