I’m writing a small GWT front-end for a backend app and I was wondering

Question

0

Asked: May 15, 20262026-05-15T11:46:20+00:00 2026-05-15T11:46:20+00:00

I’m writing a small GWT front-end for a backend app and I was wondering

0

I’m writing a small GWT front-end for a backend app and I was wondering about the best security model for GWT apps?

I was thinking of implementing an RPC method that receives an MD5 of a user password from the client webpage, then passing back a session ID to the client page (or a failcode). All subsequent calls would simply use the session ID and the server would keep a track that the IP address for the session ID is the same IP address that created the session ID?

Is this the standard mechanism for (non-ssl) authentication for GWT applications?

If not, can anyone suggest alternative solutions?

Thanks,

Report

Leave an answer
Cancel reply

You must login to add an answer.

Need An Account,

1 Answer

Editorial Team · Answer 1 · 2026-05-15T11:46:21+00:00

Editorial Team

2026-05-15T11:46:21+00:00Added an answer on May 15, 2026 at 11:46 am

This page by google gives a good overview of the security and tasks associated with logging in users. The link on that page to Security for GWT Applications also addresses several common gotchas specifically associated with GWT.

0

Reply
Share
Share

- Report

Sign Up

Sign In

Forgot Password

The Archive Base Latest Questions

I’m writing a small GWT front-end for a backend app and I was wondering

Leave an answerCancel reply

1 Answer

Leave an answer
Cancel reply