fyi: the getDocumentBase() can be fooled by the <base> tag
any other suggestions???
adam
----- Original Message -----
From: WebDuke <[EMAIL PROTECTED]>
To: <[EMAIL PROTECTED]>
Sent: Tuesday, April 13, 1999 3:39 PM
Subject: Re: Applet Servlet Authentication
| I think, if applet is 'yours', you must establish proper communication
| protocol between your-applet and your-servlet. This will keep from other
| applets to connect to your servlet. One important concept you can
incorporate
| is, when you are sending data from applet to servlet, try to put applet's
| site's URL in that (using getDocumentBase() or anything like that). This
| mechanism will not be know to other applet developers outside, so, you
have a
| bit of safety. I believe there is no specific java-function in existence
till
| date to authenticate applet requests. Let me know if you find something
| useful in this area.
| regards,
| Webduke.
|
| --- Srikanth_Mopidevi <[EMAIL PROTECTED]> wrote:
| > I'am afraid it's not possible. There is no way we can trap that as far
as
| > my
| > knowledge goes.
| >
| > Cheers
| > Srikanth Mopidevi
| > X - 7338
| >
| > > ----------
| > > From: Richard Cannings[SMTP:[EMAIL PROTECTED]]
| > > Reply To: A mailing list for discussion about Sun Microsystem's
Java
| > > Servlet API Technology.
| > > Sent: Monday, April 12, 1999 7:24 AM
| > > To: [EMAIL PROTECTED]
| > > Subject: Applet Servlet Authentication
| > >
| > > I'm new to the list so I hope this question hasn't been asked
recently.
| > > So here it goes...
| > >
| > > How can I have a servlet authenticate that the applet sending the
| > > information to the servlet is truly mine? I'm afraid that someone
could
| > > make their own applet to communicate with my servlet which would open
my
| > > system to a secruity risk.
| > >
| > > Any assistance or direction would be breatly appreciated.
| > >
| > > rich
| > >
[EMAIL PROTECTED]
| > > . . . . . . . .
http://www.math.ucalgary.ca/~cannings
| > >
| > >
| >
__________________________________________________________________________
| > > _
| > > To unsubscribe, send email to [EMAIL PROTECTED] and include in the
| > > body
| > > of the message "signoff SERVLET-INTEREST".
| > >
| > > Archives: http://archives.java.sun.com/archives/servlet-interest.html
| > > Resources:
http://java.sun.com/products/servlet/external-resources.html
| > > LISTSERV Help: http://www.lsoft.com/manuals/user/user.html
| > >
| >
| >
___________________________________________________________________________
| > To unsubscribe, send email to [EMAIL PROTECTED] and include in the
body
| > of the message "signoff SERVLET-INTEREST".
| >
| > Archives: http://archives.java.sun.com/archives/servlet-interest.html
| > Resources: http://java.sun.com/products/servlet/external-resources.html
| > LISTSERV Help: http://www.lsoft.com/manuals/user/user.html
| >
|
| _________________________________________________________
| Do You Yahoo!?
| Get your free @yahoo.com address at http://mail.yahoo.com
|
|
___________________________________________________________________________
| To unsubscribe, send email to [EMAIL PROTECTED] and include in the
body
| of the message "signoff SERVLET-INTEREST".
|
| Archives: http://archives.java.sun.com/archives/servlet-interest.html
| Resources: http://java.sun.com/products/servlet/external-resources.html
| LISTSERV Help: http://www.lsoft.com/manuals/user/user.html
___________________________________________________________________________
To unsubscribe, send email to [EMAIL PROTECTED] and include in the body
of the message "signoff SERVLET-INTEREST".
Archives: http://archives.java.sun.com/archives/servlet-interest.html
Resources: http://java.sun.com/products/servlet/external-resources.html
LISTSERV Help: http://www.lsoft.com/manuals/user/user.html
