How to use security in SD synchronization without GAM? I need to block unwanted connections. How can I validate the execution of Synchronization.Send () and Synchronization.Receive () I can not use GAM because I have to adapt my application to a pre existing security system.
How to use security in sync sd without gam?
112 Views Asked by Esteban At
1
There are 1 best solutions below
Related Questions in GENEXUS
- An error that is not specified and that I cannot resolve
- I neet to create a similar "Save As" GeneXus window
- How to retrieve the role associated to a workitem?
- Looking for documentation on the REST interface the Angular pages talk to
- In GeneXus, is there a Plugin developer guide?
- Does GeneXus follow the model view controller design pattern for the generated applications
- genexus trying to get started and getting "error: GeneXus Account (20): "Please sign the GeneXus Prototyping Cloud Terms and Conditions in order "
- How to create a procedure to send email using a gxflow template with a batch (script) task?
- How to Dynamically Change Service URLs in GeneXus 18 Upgrade 7 for Java/Android Applications?
- How to retrieve a database record associated with a work item?
- How to start a process automatically, according to a certain periodicity, in gxflow?
- How to open MS-Word files under Genexus 15 and later versions
- Drag and Drop in a specific row of a grid in Genexus
- Change in the behavior of the Edit controls when receiving the Focus, due to migration from Genexus 17 to Genexus 18
- Genexus 18 usercontrol uploadfiles freeze with mĂșltiple filess
Related Questions in GENEXUS-SD
- How to Dynamically Change Service URLs in GeneXus 18 Upgrade 7 for Java/Android Applications?
- Refresh a grid in Genexus Android
- Update Apk from Genexus 16U11 to 17U10, server url incorrect
- row to column and populate in grid in unanimo.i have Data In Rows And I want to convert to Column
- Event associated to push notification is not triggered on android
- Filter in Android grid in Genexus
- There is a way to get current map coordinates?
- Problem in GeneXus SD, when update a level of transaction
- Deep linking and shortcuts in Genexus (android)
- filter to schedule meetings using DateTime in Genexus
- how to call the camera is not through the native object camera, but through HTML
- Error "Unauthorized" when updating record from smart device grid in Genexus
- Is there any input / output to the local device?
- Send an image from smart device to the server in Genexus
- Database creation Failed in Genexus Offline android app
Related Questions in GENEXUS-GAM
- GeneXus Account service exception: "Client found response content type of 'text/html; charset=utf-8', but expected 'text/xml'
- Handling Session Timeout Across Multiple GeneXus Applications with GAM and SSO
- One Time Password with GAM
- filter to schedule meetings using DateTime in Genexus
- High TTFB with gam identity provider
- Genexus 17 GAM Platform could not been downloaded from
- Object reference not set to an instance of an object in genexus
- Set user to inactive in genexus access manager
- Set default role for new user upon registration in genexus
- How can I keep alive a GAM session?
- Using Auth0 as Authentication Provider in GAM
- Prohibit multiple GAM connections
- IOS Compilation Error Genexus 16 u8 SmartDevices Generation
- Issue commiting to Genexus Server
- Report Issue Genexus 16 Trial
Trending Questions
- UIImageView Frame Doesn't Reflect Constraints
- Is it possible to use adb commands to click on a view by finding its ID?
- How to create a new web character symbol recognizable by html/javascript?
- Why isn't my CSS3 animation smooth in Google Chrome (but very smooth on other browsers)?
- Heap Gives Page Fault
- Connect ffmpeg to Visual Studio 2008
- Both Object- and ValueAnimator jumps when Duration is set above API LvL 24
- How to avoid default initialization of objects in std::vector?
- second argument of the command line arguments in a format other than char** argv or char* argv[]
- How to improve efficiency of algorithm which generates next lexicographic permutation?
- Navigating to the another actvity app getting crash in android
- How to read the particular message format in android and store in sqlite database?
- Resetting inventory status after order is cancelled
- Efficiently compute powers of X in SSE/AVX
- Insert into an external database using ajax and php : POST 500 (Internal Server Error)
Popular # Hahtags
Popular Questions
- How do I undo the most recent local commits in Git?
- How can I remove a specific item from an array in JavaScript?
- How do I delete a Git branch locally and remotely?
- Find all files containing a specific text (string) on Linux?
- How do I revert a Git repository to a previous commit?
- How do I create an HTML button that acts like a link?
- How do I check out a remote Git branch?
- How do I force "git pull" to overwrite local files?
- How do I list all files of a directory?
- How to check whether a string contains a substring in JavaScript?
- How do I redirect to another webpage?
- How can I iterate over rows in a Pandas DataFrame?
- How do I convert a String to an int in Java?
- Does Python have a string 'contains' substring method?
- How do I check if a string contains a specific word?
There is currently no way for sending additional parameters or HTTP headers in the requests, so you'll need other means to identify your user.
One thing you could do, is call a procedure before synchronizing, passing the relevant information to identify the user (an authorization token or something like that). Then, you should validate that the next call is to the synchronization process, and check for instance that the IP address and the "device id" are the same.
Where would you validate the user's information, depends on which synchronization are we talking about.
For the Receive operation, you may perform your validations in the Offline Database object's
Startevent.For the Send operation, everything is saved to the database by using Business Components. So you may add your validations in all the BCs that are involved.
Note: having said all the above, it is highly recommended that you use GeneXus Access Manager (a.k.a. GAM), where all this is already solved.
Second note: you should use HTTPS in all your connections; otherwise, none of this will be secure.