tags:

views:

99

answers:

2
+2  Q: 

Java client/server configuration and security across domains

I'm trying to set up an application server to run a simple website and a Java client application that needs to communicate back to a Java server.

What I'd like to do is the following:

Will this work given the Java security model? Or is there a better design?

+1  A: 

For your Applet to be able to communicate to anywhere else than where it was downloaded from you are going to need to sign it, or forward any requests from it from where it was sent from.

Romain Hippeau  2010-07-07 13:53:26
Thanks - but does that apply if all the "sites" are subdomains of the same overall site, e.g. mydomain.com?
mikera  2010-07-07 14:29:36
@mikera - see here http://java.sun.com/docs/books/tutorial/deployment/applet/security.html
Romain Hippeau  2010-07-07 14:38:08
@mikera - The rules for JNLP are somewhat different.
Romain Hippeau  2010-07-07 14:40:27
Thanks romain - however the linked document is still ambiguous as far as I can tell as to whether it will allow an applet from a.mydomain.com to access a server at b.mydomain.com - any ideas on this?
mikera  2010-07-07 14:48:45
@mikera - If you have doubt, try it.
Romain Hippeau  2010-07-07 14:50:15
@mikera - How is this ambiguous - They can make network connections to the host they came from.
Romain Hippeau  2010-07-07 15:12:32
It's ambiguous because it doesn't define what it means by host - IP address? domain name? subdomain? virtual host? I clearly could go and spend a day or two building different server configurations and testing all the combinations but I would have thought that it should be defined somewhere....
mikera  2010-07-07 16:21:49
+2  A: 

better way is to manage your configuration under only one domain

* Website/web application server at http://www.mydomain.com
* Applet and/or Java Web Start jar at http://www.mydomain.com/files
* Server listening on some port at http://www.mydomain.server.com

You can use method of authentication for file access

sagar  2010-07-20 10:26:18

related questions

What is the best architecture to bridge to XMPP?
How to expose a collection property?
How do you build a ratings implementation?
Alternative "architectural" approaches to javaScript client code?
Split data access class into reader and writer or combine them?
Guide to choosing between REST vs SOAP services?
Best architecture for handling file system changes?
Globalization architecture
How Did You Decide Between WISA and LAMP?
Best Blogs for Software Architecture
Experience documentation about Shared Nothing Architecture
Agile architectures
VS.NET Application Diagrams
Documenting program architecture
Books for software architect
How do you do system integration?
Design debate: what are good ways to store and manipulate versioned objects?
Passing more parameters in C function pointers
Send messages to program through command line
Interfaces on different logic layers
How to structure a java application, in other words: where do I put my classes?
Are there any negative reasons to use an N-Tier solution?
Linux - files and scripts that execute on boot
Good STL-like library for C.
Best way to allow plugins for a PHP application