Thursday, December 7th, 2006

DWR 2.0 RC 1 Available

Category: Announcements, DWR, JavaScript, Library, Toolkit

<p>Joe Walker has announced the first release candidate for DWR 2.0, the popular Java remoting toolkit.

New in a nutshell

JavaScript Proxy API

DWR can dynamically generate JavaScript from a Java API. This is done at runtime rather than compile time, so we can use it to remote control many browsers. This makes it very easy to write things like chat applications, or anything particularly dynamic. Messages are sent to clients using Reverse Ajax.

Reverse Ajax

DWR supports 3 ways to asynchronously transfer messages from the server to the browser: Comet (long-lived HTTP connections), Polling and Piggyback. Of these Comet and Polling are active (fast but require extra network traffic) and Piggyback is passive (slower but doesn’t need extra network traffic). DWR automatically selects the best method transparently to the programmer.

Security

Two of the the biggest generic dangers to ajax applications today arr Cross-Site Scripting (XSS), which most people are aware of, and the new tool in the hack-box: Cross-Site Request Forgery (CSRF). DWR helps you protect your site against these attacks by providing automatic protection against CSRF attacks for many configurations, and by defaulting to a mode where XSS attacks are reduced.

Related Content:

Posted by Dion Almaer at 7:09 am
2 Comments

++++-
4.1 rating from 16 votes

2 Comments »

Comments feed TrackBack URI

Looking at the new feature list in detail indicates some well thought out / solid features. Nice job guys.

Comment by Jesse Kuhnert — December 7, 2006

Ajaxian » DWR 2.0 RC 1 Available

DWR can dynamically generate JavaScript from a Java API. This is done at runtime rather than compile time, so we can use it to remote control many browsers. This makes it very easy to write things like chat applications, or anything particularly dynami…

Trackback by Anonymous — December 8, 2006

Leave a comment

You must be logged in to post a comment.