Posted: Mon Aug 09, 2010 12:03 pm Post subject: is my application secure enough???
i have came so far developing my first project using primefaces but i didn't though about securing it. so i have done some search about the available solution like acegi, then i though about implementing my own security solution:
the authentication is done via a simple authentication dialog with login and password (am using for this a bean called connexionBean which store whether the authentication has succeeded or not).
for the authorization part, i add a filter which intercept any request and check the connexionBean related to the session and redirect the request when the client isn't authenticated.
so, is my solution is enough or it can breached???
thanks for replying, i have already sanitized my inputs for SQL injection, i think that i still have to lock accounts for multiple unsuccessful login attempts, that didn't came to my mind.
You cannot post new topics in this forum You cannot reply to topics in this forum You cannot edit your posts in this forum You cannot delete your posts in this forum You cannot vote in polls in this forum