Lotus Connections\u7684\u5b89\u5168\u6027\u5305\u62ec\u4ee5\u4e0b\u51e0\u4e2a\u65b9\u9762\uff1a<\/p>\n
1. \u4f20\u8f93\u5c42\u5b89\u5168\u3002Connections\u5728\u7528\u6237\u767b\u5f55\u65f6\u5f3a\u5236\u91c7\u7528SSL\uff0c\u7528\u6237\u4e5f\u53ef\u4ee5\u4fee\u6539\u914d\u7f6e\u5b9e\u73b0\u6574\u4e2a\u5e94\u7528\u7684SSL\u4fdd\u62a4\u3002\u4e0a\u5468\u6211\u4eec\u6839\u636e\u4e00\u4e2a\u56fd\u5916\u5ba2\u6237\u7684\u9700\u6c42\uff0c\u901a\u8fc7\u5b9a\u5236web.xml\u548cHTTP Server\u7684rewriterule\u5b9e\u73b0\u4e86Web\u8bbf\u95ee\u7684\u5f3a\u5236SSL\u4fdd\u62a4\u548cfeed\u5185\u5bb9\u7684\u5f3a\u5236basic authentication\u3002<\/p>\n
2. \u8ba4\u8bc1\u5b89\u5168\u3002Connections\u7684\u8ba4\u8bc1\u5305\u62ecform based authentication\uff08j_security_check\uff09\u548cbasic authentication\u3002\u524d\u8005\u662f\u5728\u4f7f\u7528\u6d4f\u89c8\u5668\u8bbf\u95ee5\u4e2a\u6a21\u5757\u7684\u65f6\u5019\u7528\u6237\u8ba4\u8bc1\u65b9\u5f0f\uff0c\u540e\u8005\u662ffeed reader\u4f7f\u7528\u7684\u3002\u5728Connections 1.0.2\u4e2d\uff0c\u5f3a\u5236\u8981\u6c42feed reader\u5728\u505apost\u7b49\u5199\u64cd\u4f5c\u7684\u65f6\u5019\u4f7f\u7528basic authentication over SSL\uff0c\u5176\u4ed6\u8bfbfeed\u7684\u64cd\u4f5c\u65e0\u9700\u8ba4\u8bc1\u3002<\/p>\n
3. \u7b2c\u4e09\u65b9\u5b89\u5168\u4ea7\u54c1\u7684\u652f\u6301\u30021.0.2\u589e\u52a0\u4e86\u5bf9Tivoli Access Manager \uff08TAM\uff09\u7684\u652f\u6301\u3002\u770b\u4f3c\u548c\u5e94\u7528\u65e0\u5173\u7684\u5b89\u5168\u652f\u6301\u5b9e\u9645\u4e0a\u5f71\u54cd\u4e86\u4e0d\u5c11\u7684\u4ee3\u7801\u3002\u800c\u4e3a\u4e86\u652f\u6301AJAX, JSON\u7b49\u8c03\u7528\uff0cTAM\u7684\u914d\u7f6e\u4e5f\u662f\u5f88\u4e0d\u540c\u3002\u4e3e\u4f8b\u6765\u8bb2\uff0c\u6211\u4eec\u5c1d\u8bd5\u8fc7\u7684\u4e00\u4e2aTAM\u914d\u7f6e\u4f1a\u5728\u8fd4\u56de\u7684\u9875\u9762\u7684\u672b\u5c3e\u6dfb\u52a0\u4e00\u6bb5JS\u4ee3\u7801\uff0c\u8fd9\u4f1abreak\u6211\u4eec\u7684JSON\u8c03\u7528\uff0c\u5fc5\u987b\u7528\u5176\u4ed6\u914d\u7f6e\u5f62\u5f0f\u7ed5\u8fc7\u3002<\/p>\n
4. \u5bf9Web\u5185\u5bb9\u7684\u8fc7\u6ee4\u3002Connections\u4f7f\u7528\u4e86ACF<\/a>\u5bf9\u7528\u6237\u63d0\u4ea4\u5185\u5bb9\u8fdb\u884c\u68c0\u67e5\uff0c\u53bb\u9664\u6389\u4e00\u4e9b\u4f1a\u5371\u5bb3Web\u8bbf\u95ee\u5b89\u5168\u7684\u4ee3\u7801\uff0c\u5982Cross-site scripting \uff08XSS<\/a>\uff09\u3002Blogs\u8fd8\u4f1a\u6839\u636e\u7528\u6237\u914d\u7f6e\u5bf9\u4e0a\u4f20\u7684\u6587\u4ef6\u8fdb\u884c\u68c0\u6d4b\uff0c\u6700\u5927\u7a0b\u5ea6\u4e0a\u51cf\u5c11XSS\u7684\u53ef\u80fd\u6027\u3002Activities\u751a\u81f3\u8fd8\u63d0\u4f9b\u4e86\u5bf9CSRF<\/a>\u7684\u9632\u8303\u529f\u80fd\u3002<\/p>\n \u5929\u4e0b\u6ca1\u6709\u514d\u8d39\u7684\u5348\u9910\uff0c\u589e\u52a0\u4e86\u8bf8\u591a\u7684\u5b89\u5168\u6027\u673a\u5236\uff0c\u4f1a\u5728\u67d0\u79cd\u7a0b\u5ea6\u4e0a\u5bf9\u7cfb\u7edf\u6027\u80fd\u4ea7\u751f\u5f71\u54cd\uff0c\u6bd4\u5982HTTPS\u76f8\u5bf9HTTP\u4f1a\u964d\u4f4e\u7ea640%\u7684\u6027\u80fd\uff08\u4ec5\u5728\u767b\u5f55\u662f\u4f7f\u7528\u53ef\u4ee5\u5ffd\u7565\uff09\uff1bACF\u7684HTML\u89e3\u6790\u7684\u4ee3\u4ef7\u3002\u597d\u6d88\u606f\u662f\u5927\u90e8\u5206\u5b89\u5168\u673a\u5236\u90fd\u662f\u53ef\u4ee5\u7531\u7528\u6237\u4fee\u6539\u914d\u7f6e\u6765enable\u6216\u8005disable\uff0c\u6709\u76f8\u5f53\u7684\u7075\u6d3b\u6027\u3002\n<\/p>\n \n<\/p>\n <\/p>\n","protected":false},"excerpt":{"rendered":" Lotus Connections\u7684\u5b89\u5168\u6027\u5305\u62ec\u4ee5\u4e0b\u51e0\u4e2a\u65b9\u9762\uff1a 1. \u4f20\u8f93\u5c42\u5b89\u5168\u3002Connections\u5728\u7528\u6237\u767b\u5f55\u65f6\u5f3a\u5236\u91c7\u7528SSL\uff0c\u7528\u6237\u4e5f\u53ef\u4ee5\u4fee\u6539\u914d\u7f6e\u5b9e\u73b0\u6574\u4e2a\u5e94\u7528\u7684SSL\u4fdd\u62a4\u3002\u4e0a\u5468\u6211\u4eec\u6839\u636e\u4e00\u4e2a\u56fd\u5916\u5ba2\u6237\u7684\u9700\u6c42\uff0c\u901a\u8fc7\u5b9a\u5236web.xml\u548cHTTP Server\u7684rewriterule\u5b9e\u73b0\u4e86Web\u8bbf\u95ee\u7684\u5f3a\u5236SSL\u4fdd\u62a4\u548cfeed\u5185\u5bb9\u7684\u5f3a\u5236basic authentication\u3002 2. \u8ba4\u8bc1\u5b89\u5168\u3002Connections\u7684\u8ba4\u8bc1\u5305\u62ecform based authentication\uff08j_security_check\uff09\u548cbasic authentication\u3002\u524d\u8005\u662f\u5728\u4f7f\u7528\u6d4f\u89c8\u5668\u8bbf\u95ee5\u4e2a\u6a21\u5757\u7684\u65f6\u5019\u7528\u6237\u8ba4\u8bc1\u65b9\u5f0f\uff0c\u540e\u8005\u662ffeed reader\u4f7f\u7528\u7684\u3002\u5728Connections 1.0.2\u4e2d\uff0c\u5f3a\u5236\u8981\u6c42feed reader\u5728\u505apost\u7b49\u5199\u64cd\u4f5c\u7684\u65f6\u5019\u4f7f\u7528basic authentication over SSL\uff0c\u5176\u4ed6\u8bfbfeed\u7684\u64cd\u4f5c\u65e0\u9700\u8ba4\u8bc1\u3002 3. \u7b2c\u4e09\u65b9\u5b89\u5168\u4ea7\u54c1\u7684\u652f\u6301\u30021.0.2\u589e\u52a0\u4e86\u5bf9Tivoli Access Manager \uff08TAM\uff09\u7684\u652f\u6301\u3002\u770b\u4f3c\u548c\u5e94\u7528\u65e0\u5173\u7684\u5b89\u5168\u652f\u6301\u5b9e\u9645\u4e0a\u5f71\u54cd\u4e86\u4e0d\u5c11\u7684\u4ee3\u7801\u3002\u800c\u4e3a\u4e86\u652f\u6301AJAX, JSON\u7b49\u8c03\u7528\uff0cTAM\u7684\u914d\u7f6e\u4e5f\u662f\u5f88\u4e0d\u540c\u3002\u4e3e\u4f8b\u6765\u8bb2\uff0c\u6211\u4eec\u5c1d\u8bd5\u8fc7\u7684\u4e00\u4e2aTAM\u914d\u7f6e\u4f1a\u5728\u8fd4\u56de\u7684\u9875\u9762\u7684\u672b\u5c3e\u6dfb\u52a0\u4e00\u6bb5JS\u4ee3\u7801\uff0c\u8fd9\u4f1abreak\u6211\u4eec\u7684JSON\u8c03\u7528\uff0c\u5fc5\u987b\u7528\u5176\u4ed6\u914d\u7f6e\u5f62\u5f0f\u7ed5\u8fc7\u3002 4. \u5bf9Web\u5185\u5bb9\u7684\u8fc7\u6ee4\u3002Connections\u4f7f\u7528\u4e86ACF\u5bf9\u7528\u6237\u63d0\u4ea4\u5185\u5bb9\u8fdb\u884c\u68c0\u67e5\uff0c\u53bb\u9664\u6389\u4e00\u4e9b\u4f1a\u5371\u5bb3Web\u8bbf\u95ee\u5b89\u5168\u7684\u4ee3\u7801\uff0c\u5982Cross-site scripting \uff08XSS\uff09\u3002Blogs\u8fd8\u4f1a\u6839\u636e\u7528\u6237\u914d\u7f6e\u5bf9\u4e0a\u4f20\u7684\u6587\u4ef6\u8fdb\u884c\u68c0\u6d4b\uff0c\u6700\u5927\u7a0b\u5ea6\u4e0a\u51cf\u5c11XSS\u7684\u53ef\u80fd\u6027\u3002Activities\u751a\u81f3\u8fd8\u63d0\u4f9b\u4e86\u5bf9CSRF\u7684\u9632\u8303\u529f\u80fd\u3002 \u5929\u4e0b\u6ca1\u6709\u514d\u8d39\u7684\u5348\u9910\uff0c\u589e\u52a0\u4e86\u8bf8\u591a\u7684\u5b89\u5168\u6027\u673a\u5236\uff0c\u4f1a\u5728\u67d0\u79cd\u7a0b\u5ea6\u4e0a\u5bf9\u7cfb\u7edf\u6027\u80fd\u4ea7\u751f\u5f71\u54cd\uff0c\u6bd4\u5982HTTPS\u76f8\u5bf9HTTP\u4f1a\u964d\u4f4e\u7ea640%\u7684\u6027\u80fd\uff08\u4ec5\u5728\u767b\u5f55\u662f\u4f7f\u7528\u53ef\u4ee5\u5ffd\u7565\uff09\uff1bACF\u7684HTML\u89e3\u6790\u7684\u4ee3\u4ef7\u3002\u597d\u6d88\u606f\u662f\u5927\u90e8\u5206\u5b89\u5168\u673a\u5236\u90fd\u662f\u53ef\u4ee5\u7531\u7528\u6237\u4fee\u6539\u914d\u7f6e\u6765enable\u6216\u8005disable\uff0c\u6709\u76f8\u5f53\u7684\u7075\u6d3b\u6027\u3002<\/p>\n","protected":false},"author":1,"featured_media":0,"comment_status":"open","ping_status":"open","sticky":false,"template":"","format":"standard","meta":{"footnotes":""},"categories":[2,5],"tags":[],"class_list":["post-696","post","type-post","status-publish","format-standard","hentry","category-ibm","category-tech"],"_links":{"self":[{"href":"https:\/\/www.zhangling.org\/blog\/wp-json\/wp\/v2\/posts\/696","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/www.zhangling.org\/blog\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/www.zhangling.org\/blog\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/www.zhangling.org\/blog\/wp-json\/wp\/v2\/users\/1"}],"replies":[{"embeddable":true,"href":"https:\/\/www.zhangling.org\/blog\/wp-json\/wp\/v2\/comments?post=696"}],"version-history":[{"count":0,"href":"https:\/\/www.zhangling.org\/blog\/wp-json\/wp\/v2\/posts\/696\/revisions"}],"wp:attachment":[{"href":"https:\/\/www.zhangling.org\/blog\/wp-json\/wp\/v2\/media?parent=696"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/www.zhangling.org\/blog\/wp-json\/wp\/v2\/categories?post=696"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/www.zhangling.org\/blog\/wp-json\/wp\/v2\/tags?post=696"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}