Xi Hang

Greenhorn
+ Follow
since Dec 02, 2001
Merit badge: grant badges
For More
Cows and Likes
Cows
Total received
In last 30 days
0
Forums and Threads

Recent posts by Xi Hang

The requirement suggests to put JSP and servlet on the component diagram. Is that right? Shouldn't JSPs and servlets be put on class
diagram?
I can easily find class diagram with JSP and servlet but rarely a component diagram showing JSPs and servlets.
Second, the requirement suggests showing interactions among component on the component diagram. But UML spec1.4 defines component diagram to show dependency while a deployment diagram seems to be the one that shows runtime interaction.
Both Rose and Together don't provide link line representing interaction in their component diagram. Together5.5 only provides "Dependency" line in its component diagram and "Association" line in deployment diagram. Rose only provides
dependency line in its component diagram.
Deployment diagram should be the diagram showing interaction among components.
Am I missing something?
Thanks for your comment!
One other possible solution is HTTPS tunneling.
But, how much does it slows down the response time?
Thanks
Tim, Siddharth: Thanks for your comment.
I'd like to add something I just find:
In J2EE Blue Print(http://java.sun.com/blueprints/guidelines/designing_enterprise_applications/security/protecting_messages/index.html), regarding Integrity Mechanisms, it says :

Quote
In the J2EE architecture,....A Deployer must configure the containers involved in a call to implement integrity mechanisms. .... When integrity mechanisms are configured by the Deployer, the calling container must compute and attach a message signature to the call request, and verify the correspondence between the call response and the message signature attached to the call response. The called container must verify the correspondence between the call request and the attached message signature, and compute and attach a message signature to the call response.
Unquote
So, EJB container should be configurable to accept EJC client calls over SSL(RMI over SSL).
I could easily find codes sample from a client side that initiates JDNI lookup from a secured socket. But how is the EJB container side configured to accept incoming calls over SSL?
WebLogic has a IIOP Listener/Handler which can be configured to accept IIOP over SSL.
(http://edocs.bea.com/wle/wle50/security/concepts.htm#1039095).
Oracle 9i has something similar
(http://download-west.oracle.com/otndoc/oracle9i/901_doc/java.901/a90188/secure.htm#1011903)
Does this mean EJB container can be configured to accept client calls over SSL?
Please clarify it!
Thanks
I'm stuck in a scenario to use EJB Client over SSL.
Usually, EJB Client is within LAN and RMI is the protocol to communication to EJB container.
For some reason, EJB client is required outside of the firewall and the firewall is configured to allow such communication. How should EJB container and EJB client configured so that EJB client communicates with EJB container over SSL?
Could someone give some comment on this scenario?(or some links to this topic)
Thanks
How do you prepare for "Concept" part?
It is not listed in Sun's Success Guide. Does anyone know the objective of "Concept" and how to prepare for it?