Win a copy of Murach's Python Programming this week in the Jython/Python forum!
  • Post Reply Bookmark Topic Watch Topic
  • New Topic

Transaction management and Security in JSP  RSS feed

 
vikassheel gupta
Ranch Hand
Posts: 53
  • Mark post as helpful
  • send pies
  • Quote
  • Report post to moderator
Hi,
any one can tell me how to manage transaction management and security in JSP as we do in the EJB
how to handle dirty read, Uncommitted date etc in JSP
tel me the complete information i ddont know any thing about it but i know in EJB i want to know in JSP

thanks alot
 
Ulf Dittmer
Rancher
Posts: 42970
73
  • Mark post as helpful
  • send pies
  • Quote
  • Report post to moderator
JSP handles neither transactions nor security by itself. You can use relevant APIs like JDBC TX, JTA, JAAS etc. to implement something yourself, but this is really outside of the scope of JSP (and, largely, of servlets as well).
 
vikassheel gupta
Ranch Hand
Posts: 53
  • Mark post as helpful
  • send pies
  • Quote
  • Report post to moderator
Hi
thanks alot
but how can ASP handle that things if ASP can handle the locking systems then i think JSP will also do in the same or in better way

and one more thing there is a global.asa file in ASP as in JSP we use global.jsa file why dont people use it
why dont they use this file is some thing wrong and when should we use it
thanks alot
 
Ulf Dittmer
Rancher
Posts: 42970
73
  • Mark post as helpful
  • send pies
  • Quote
  • Report post to moderator
JSP is a technology for the presentation layer; it does not address problems of transactionality and security. J2EE does, of which JSP is a small part.
And that's a good thing. Many ASP sites of old used to mix all these functionalities together, with the result quite often being horrible spaghetti code. With servlets, you can move some of the security declarations into web.xml, and the DB TX are being handled by the data access layer, which hopefully is completely independent of any JSP pages.
Mind you, if you want, you can put all your business logic, and all your data access code, and the security code, in your JSP pages. But consensus is that that is a Bad Thing to do.
we use global.jsa file why dont people use it

I'm not sure what you mean by global.jsa, there's no such file. Or are you proposing that there should be one?

On an unrelated note, using some punctuation between sentences would make your post much easier to read.
[ August 24, 2005: Message edited by: Ulf Dittmer ]
 
vikassheel gupta
Ranch Hand
Posts: 53
  • Mark post as helpful
  • send pies
  • Quote
  • Report post to moderator
Hello sir

as we all know there is a file global.jsa in JSP
why dont people use it

look at this link

http://bob.marlboro.edu/~msie/2001/ipl/java/code/may05/resin-1.2.5/doc/ref/jspapp.xtp

this will tell u about global.jsa
but i cant understand why dont people use it
is it any disadvantage to use it
thanks alot
 
David Ulicny
Ranch Hand
Posts: 724
  • Mark post as helpful
  • send pies
  • Quote
  • Report post to moderator
First time I hear about global.jsa . Where it should be? For what?
 
Ulf Dittmer
Rancher
Posts: 42970
73
  • Mark post as helpful
  • send pies
  • Quote
  • Report post to moderator
http://bob.marlboro.edu/~msie/2001/ipl/java/code/may05/resin-1.2.5/doc/ref/jspapp.xtp

That's Resin-specific functionality. It is not a part of the Servlet specification, thus Tomcat and other spec-compliant containers do not use this file.
Just like only Tomcat knows about its server.xml file; it means nothing to other servers. Of course, none of this should affect spec compliance.
 
  • Post Reply Bookmark Topic Watch Topic
  • New Topic
Boost this thread!