Our web application has three different operations that proceed as follows: The user is presented with a popup where different settings are selected. The user can click on a button labeled with the operation (ex: "Merge") or "Cancel". If the user goes forward the application processes the operation which can take a few moments and anot...
I've been developing an iPhone web app on a Windows XP box using MobiOne Test Center and Safari for testing and debugging and occasionally using a real iPhone for testing. The problem is that MobiOne, Safari (desktop), and the iPhone all produce different errors. Obviously I am most concerned with the errors that occur on the iPhone, sin...
I have a new 64-bit Ubuntu server with 4G of memory. I need to serve several (6 now, maybe 50 later) war files as their own context roots. (Similar apps from a commmon code base branded differently). I'm more comfortable with Jetty than Apache. I can just drop the wars in /usr/share/jetty6/webapps. But how can I add new ones without ...
In my research, I found some concern around deploying an online PHP application while leaving its ".hg" folder or ".svn" folders in place on the production server. Unfortunately, I was not able to find a clear explanation as to why this is a concern. I would like to better understand this security risk. It seems to me that you don't...
So I am creating a web app, that will give each registered user a unique 'workspace'. This workspace should be accessible by anybody they give permission to. I have the main domain for my marketing website, but I am trying to figure out how to manage the nitty-gritty domain management of the web app itself. Should I buy generic domains...
Hi, I'm developing a web application which contains banner ads, and I don't know how to teach my client to charge their customers for these banners. Can someone help with a book or business strategy? ...
We're designing a JEE web app (to run on tomcat) It's intended to be a web interface for a command line program. Is there any framework/application that allows this? i.e. JSP pages which will internally fire commands to a program installed on the same server as the Tomcat server. The command line is a propietary non-Java program. ...
Hello, Am wondering how to achieve a floating div in iPhone Safari. position:fixed does not work unfortunately. Thank you for your time. ...
I have a webapplication and I want to use a different log for every user, so I can have a "history" of what the user did on the system. This is what I have so far: import java.io.File; import java.io.IOException; import org.apache.log4j.DailyRollingFileAppender; import org.apache.log4j.FileAppender; import org.apache.log4j.SimpleLayou...
I've been considering using Google App Engine for a few hobby projects. While they won't be handling any sensitive data, I'd still like to make them relatively secure for a number of reasons, like learning about security, legal, etc. What security issues need to be addressed when working with Google App Engine? Are they the same issues...
Can someone list with references / evidences if possible, why we don't see much AJAX in secure web applications like internet banking? eg. Internet banking has a list of tabs for Accounts, Payments, Tools, Reports. Normally you'd see these implemented as links to different pages. Why couldn't you just have one page and use AJAX to load ...
I'm a programmer but not a web programmer looking to help out a friend set up a simple web-accessible database for a non-profit. It would need to be available both inside and out of the office, provide at least 2 levels of access (ie. clients could access their own records, employees could access everything), and do everything right in ...
A passionate discussion from today. Developer 1: "AJAX is a set of tools, use it where it really helps, not just for the sake of it." Developer 2: "Its almost 2011, we can build rich desktop like applications in the browser, we should use AJAX everywhere and make a single page application with everything in it an A...
If I create a utility project and multiple dynamic web projects within Eclipse and set it up so that dynamic web projects depend on the utility project, I'm guessing that I will have to redeploy all the dynamic web projects to the server if at some point I make enhancements to the utility project. If I understand correctly, setting depe...
I need to be able to set a MySQL user variable that is used in a trigger in a Spring MVC Hibernate web ap. This user variable is used in MySQL triggers on the tables that are being manipulated by Hibernate. I need this user variable to be correctly set during all of Hibernate's write accesses to the database. Unfortunately HQL does no...
I am going to be putting a website up that will talk directly to a Microsoft SQL database that is hosted in a small office. I am debating between having the web server in the same office vs. hosting it with a professional hosting company. The trick is that the database must remain in the office because of internal software requirements. ...
I read about session security eg. Session Fixation, Hijacking & Injection but am confused about the workings of session security. The way I usually do it: // when user logins, $_SESSION["user"] = "someuser"; // check user login if (isset($_SESSION["user"]) && !empty($_SESSION["user"])) Maybe I am doing it wrong, but I don't have Ses...
I am making a simple web-app which requires login for the admin page. I came across this incantation on the web.py site (http://webpy.org/cookbook/userauth) : import hashlib import web def POST(self): i = web.input() authdb = sqlite3.connect('users.db') pwdhash = hashlib.md5(i.password).hexdigest() check = authdb.e...
I have an application which uses Spring 2.5 and Hibernate 3. There's a web application with a presentation layer, a servive layer and a DAO layer, as well as some Quartz jobs sharing the same service and DAO layers. Transactions are initialized in different layers with @Transactional annotations, like this: It led me to a problem ...
I have programmed a web app for my office that runs on the server. All of our documents are on the server as well. I would like to be able to have the user browse a folder on the server through my web app, open it in an editor (online or desktop), be able to edit it and save it back to the server, in the location where it was opened from...