de.hs_rm.cs.lecturenotes.shared.security
Class SecurityUtil

java.lang.Object
  extended by de.hs_rm.cs.lecturenotes.shared.security.SecurityUtil

public final class SecurityUtil
extends java.lang.Object

Common (and simplified) methods for client and server relevant security problems like hand shaking authorized clients to allow registering new users.

Version:
$LastChangedRevision: 241 $
Author:
Enrico Homann

Field Summary
static java.lang.String AUTHORIZEDCLIENT_SECRET_HARDCODEPART
          This is a hard-coded secret part to be used in unprotected GWT RPC like registering new users.
 
Method Summary
static java.lang.String createAuthorizedClientSecret()
          Will return the (simplified) secret for authorized clients.
 
Methods inherited from class java.lang.Object
equals, getClass, hashCode, notify, notifyAll, toString, wait, wait, wait
 

Field Detail

AUTHORIZEDCLIENT_SECRET_HARDCODEPART

public static final java.lang.String AUTHORIZEDCLIENT_SECRET_HARDCODEPART
This is a hard-coded secret part to be used in unprotected GWT RPC like registering new users.

See Also:
Constant Field Values
Method Detail

createAuthorizedClientSecret

public static java.lang.String createAuthorizedClientSecret()
Will return the (simplified) secret for authorized clients. Used for unprotected methods like the registerNewUser() Method However we can't use the sessionId because there is not made a connection yet. Hash methods are also not available on the client side. For coding ease do we use a hard coded secret only.

Returns:
String