Reputation: 2138
Struts2 web application security
I have a struts2 web application.
I am now testing my application in LAN using tomcat after converting the project into a . war file with jsp, css, js and class files. And without java files.
But if anyone who is getting access to server can read the codes.
Is there any way to protect my codes?
Whether it can be deployed if I convert my codes into a single jar file?
Is there any tools available for securing my web application?
I have to host the project in a server at clients workspace.
Anyway I have to give access to an administrator at their office for emergency shut down or any other such cases.
There I want it to be protected.
If he is accessing my codes means it will be gone.
Can I use any software like folder lock? whether it will block tomcat from accessing the folder?
Thanks in advance..
Upvotes: 0
Views: 1147
Answers (1)
Reputation: 23587
You have already asked this question as it has been told that you can take some steps to prevent things but its not possible to protect that 100%
why you want to secure code and from whom??
You could obfuscate and/or encrypt your .class files, but if they're determined to get to your unobfuscated byte code, they almost certainly will.
If you want to protect you HTML and java-script code then there are tools likeclosure-compiler
for details refer this thread
how-can-we-secure-our-web-application-codes
Upvotes: 1
Related Questions
- How to apply Spring Security on Struts 2
- How to implement Spring security in Struts 1 (not in struts 2)
- How to integrate Spring Security and Struts2
- struts 2 dispatcher and tomcat 6 security
- Need help to understand and implement basic web app security
- Struts2 Authorization
- Java Web Application Security Idea
- struts2 app on Tomcat 5.5: Basic user/pass security?
- Use Spring Security 3 inside Struts 2 application. Good choose?
- Spring security and Struts 2