This week's book giveaway is in the JavaScript forum.
We're giving away four copies of Svelte and Sapper in Action and have Mark Volkmann on-line!
See this thread for details.
Win a copy of Svelte and Sapper in Action this week in the JavaScript forum!
  • Post Reply Bookmark Topic Watch Topic
  • New Topic
programming forums Java Mobile Certification Databases Caching Books Engineering Micro Controllers OS Languages Paradigms IDEs Build Tools Frameworks Application Servers Open Source This Site Careers Other all forums
this forum made possible by our volunteer staff, including ...
Marshals:
  • Campbell Ritchie
  • Ron McLeod
  • Paul Clapham
  • Bear Bibeault
  • Junilu Lacar
Sheriffs:
  • Jeanne Boyarsky
  • Tim Cooke
  • Henry Wong
Saloon Keepers:
  • Tim Moores
  • Stephan van Hulst
  • Tim Holloway
  • salvin francis
  • Frits Walraven
Bartenders:
  • Scott Selikoff
  • Piet Souris
  • Carey Brown

GWT: Security concerns with JSON interpeter

 
Sheriff
Posts: 13411
Firefox Browser VI Editor Redhat
  • Mark post as helpful
  • send pies
  • Quote
  • Report post to moderator
First, sorry for referring to an article that is so short on the details.
http://www.eweek.com/article2/0,1895,2110554,00.asp

Does your book get into any of the security issues with passing JSON objects and how to avoid them using GWT?
 
author
Posts: 50
  • Mark post as helpful
  • send pies
  • Quote
  • Report post to moderator
My book does not address any security issues with passing JSON objects. Interesting that they found vulnerabilities in all the JS libs like Yahoo UI, Prototype, Script.aculo.us, Dojo, Moo.fx, jQuery, Rico and MochiKit.

thanks
prabhakar
 
Ben Souther
Sheriff
Posts: 13411
Firefox Browser VI Editor Redhat
 
Prabhakar Chaganti
author
Posts: 50
  • Mark post as helpful
  • send pies
  • Quote
  • Report post to moderator
The GWT team has posted an article discussing how GWT handles javascript vulnerabilities:

http://groups.google.com/group/Google-Web-Toolkit/web/security-for-gwt-applications

thanks
prabhakar
 
    Bookmark Topic Watch Topic
  • New Topic