For better protection of JViews Web applications, security
mechanisms have been introduced for both JSF and JavaScript JViews
Web applications. As described in the section Programmer's
documentation>Building Web applications>JViews Web
technology architecture>Client-server architecture, the JViews
Web application will send the request by using client JavaScript
libraries in the browser, to the JViews servlet class on the server
side and then it will update the client with the information
received from the response. The request URL sent by the client is
composed of a list of requested parameters. So we can validate
these requested parameters and expected values on the server side
for security purposes.
The following section provides detailed
steps about how to use the mechanism and how to customize it in
your JViews Web application.
Before using the parameter validation mechanism, you must first
create a normal JViews JSF or JavaScript application, (see Programmer's documentation>Building Web
applications, for more information) to integrate JViews Web
components in your application. Then you can follow the following
sections to enable parameter validation in your JViews Web
application and customize it.