Once a user is logged in, I am creating a Java session and in the session their useride and session ), These two parameters are sent to the GWT client and they are stored there in the base GWT client presenter (not in the form of cookies). I am using MVP architecture.
With each of these two parameters, every call to be sent with the User ID and SID, so I verify on the server that the current session on the server is equal to the session ID provided and it is given UserId Comes under.
If all is well then only then do I process the RPC request further.
In addition to this, I am new to all my RPC operators, a normal
I am new to GWT and GAE, any help would be appreciated.
Thank you.
Thank you.
Thank you.
Using SSL and sending session IDs in the payload of each request are two good first steps. I have given a better explanation with more details.
Comments
Post a Comment