Hi All, I'm a newbie in flex, My searches and adobe gives a of links but I need to get specified in my topic. Those who are in handling security please give me an answer (theoretical) whether a flex GUI with J2EE as server and using remoting (rpc)for server call, a) In J2EE project we will use session Id to ensure call comes from the same user.is it necessary in flex client also? if so how we can achieve session Id in client, some example also. b) I have a login module in my application, may I need to authenticate each of my remote call from flex.
Tom please don't loose my chance to get answer from others who could kindly answer to me , even it's blonder. all are not genious like but everybody uses google and adobe docs first. Regards, Razak --- In flexcoders@yahoogroups.com, Tom Chiverton <[EMAIL PROTECTED]> wrote: > > On Thursday 09 Oct 2008, Abdul Razak PM wrote: > > Please provide some links to study more about it. > > Is Google and Adobe's docs site broken ? > > > Also What's the > > possibility of Hacking our code if we didn't make it secure? > > Threat assessment is a whole skill into itself, you'd have to explain a lot > more about what your service is, who is likely to attack it and with what > resources. > > > It's very helpful to get it's theoretical explanations too. > > Schneier's blog and /Beyond Fear/ book are good. > > -- > Tom Chiverton > Helping to quickly leverage third-generation e-commerce > > > > **************************************************** > > This email is sent for and on behalf of Halliwells LLP. > > Halliwells LLP is a limited liability partnership registered in England and Wales under registered number OC307980 whose registered office address is at Halliwells LLP, 3 Hardman Square, Spinningfields, Manchester, M3 3EB. A list of members is available for inspection at the registered office. Any reference to a partner in relation to Halliwells LLP means a member of Halliwells LLP. Regulated by The Solicitors Regulation Authority. > > CONFIDENTIALITY > > This email is intended only for the use of the addressee named above and may be confidential or legally privileged. If you are not the addressee you must not read it and must not use any information contained in nor copy it nor inform any person other than Halliwells LLP or the addressee of its existence or contents. If you have received this email in error please delete it and notify Halliwells LLP IT Department on 0870 365 2500. > > For more information about Halliwells LLP visit www.halliwells.com. >