JSF stateless views and CSRF protection

JavaServer Faces (JSF) – especially since version 2.2 – provides a good Cross-Site Request Forgery (CSRF) protection. To achieve this, every form automatically receives a random hidden token: Nothing more to do for the developer, JSF takes care of comparing the token’s value against the one stored in the server side session. Without the correct… Continue reading JSF stateless views and CSRF protection

A look back at JavaLand 2014

JavaLand 2014 is over, and it has been a great first edition of the conference! It was a great privilege speaking there. The sessions I’ve attended were interesting, I ended up with a lot of new ideas for the weeks to come. The different community activities made it really easy to get in touch with… Continue reading A look back at JavaLand 2014

Published
Categorized as Events

JSF – Referencing resources in stylesheets

I recently ran into some trouble when trying to show a background image in a JSF page which was included via a stylesheet. When using <h:outputStylesheet library=”css” value=”styles/styles.css” name=”styles.css” /> to include the stylesheet into the JSF page, referencing resources (like images) in the CSS file need a special URL form. The typical form html… Continue reading JSF – Referencing resources in stylesheets

Published
Categorized as Java EE

JCrypTool 1.0.0 Release Candidate 7 available

JCrypTool 1.0.0 Release Candidate 7 is available for download! We fixed a lot of bugs, enhanced a lot of features and integrated six new crypto plug-ins: New visualization plug-in Extended RSA New visualization plug-in Signature Demonstration New visualization plug-in Public-Key Infrastructure New visualization plug-in Huffman Coding New visualization plug-in Shanks Babystep-Giantstep New games plug-in Divide… Continue reading JCrypTool 1.0.0 Release Candidate 7 available

Published
Categorized as JCrypTool

JBoss AS 7 context-root manipulation for web services

I recently had a requirement for web service availability at root context level on JBoss AS 7. Without any configuration, a web service URL (as the rest of the web application) contains the jars’ name like http://localhost:8080/MyJar/MyService/MyEndpoint whereas my desired URL looked like http://localhost:8080/MyService/MyEndpoint without the jars’ name. Adding the jboss-webservices.xml file to the META-INF… Continue reading JBoss AS 7 context-root manipulation for web services

Published
Categorized as Java