Chapter 20. Web-Based Document Management
How do you secure a file on the web so that only authorized people can access it? Some people simply put the file in one of the virtual host’s sub-directories and provide no link to it, so that only those who know the full path can download it. This method is of course, only as secure as the full path to the document, and you probably would not secure your corporate confidential documents this way.
What people normally do is to utilize the web server and operating system authentication method so that every time someone tries to download a file, that person needs to type in the correct user name and password. ...
Get Java for the Web with Servlets, JSP, and EJB: A Developer’s Guide to J2EE Solutions now with the O’Reilly learning platform.
O’Reilly members experience books, live events, courses curated by job role, and more from O’Reilly and nearly 200 top publishers.