This week's book giveaway is in the Agile and Other Processes forum. We're giving away four copies of The Little Book of Impediments (e-book only) and have Tom Perry on-line! See this thread for details.
I haven't played in the Java web application space in a couple of years and wanted to get an opinions on best framework for the following application we're planning to write:
1. Porting from old DOS-like menu-based application to web app hosted on a J2EE app server.
2. Very simple interface for internal users. No fancy graphic design required. No complicated, multi-screen workflows
3. Print some reports to web browser in simple tabular format.
4. Execute simple actions, like looking up the price and stats, given an item number, or voiding a transaction given transaction number, etc.
5. ***Should have good security because application will be hosted on server with some sensitive data. That is, the framework should not have fundamental security flaws that are hard to work around.
I've used both Struts and JSF, and I'm inclined towards JSF because I think it does a clean job of producing a simple interfaces, but have two questions:
1. Are there any security issues I should be aware of? I.e. Is JSF to web apps as 'telnet' is to UNIX? Or whatever?
2. Are there any other Java-based technologies for MVC web-apps that have arisen since my last foray into this field, that I should be aware of and investigate?