Re: [PHP] PHP Java extension--hopeless?
From: Ray Hunter (bigdog_at_venticon.com)
To: email@example.com Date: Thu, 27 Nov 2003 09:56:41 -0700
On Wed, 2003-11-26 at 20:17, Raditha Dissanayake wrote:
> >Right, I agree this is a very bassakwards way of going about it.. In this
> >instance, performance is not really an issue as much as politics.. but
> >this comment is useful as we may be able to persuade them into providing
> >information about the algorithm in use, to develop something more usable.
> >We are the small fish, and the big fish provides this service.. it's
> >politically beneficial to us if we could get it running in the short term,
> >but it appears that the Java extension really isn't ready for prime time..
> >Fortunately I've made contact with the guy who developed the Java code,
> >and he has a vested interest in getting it to work with PHP too, so maybe
> >in the longer term we can find a better solution...
> Suggestion: ask your java developer to create JSP that uses the decoder
> bean. Host on the LAN. Post the encrypted data to it and recieve the
> decrypted response. This would be pathetic in terms of performance but
> you don't appear to be concerned about it. You would obviously want to
> do this over HTTPS instead of plain old HTTP
Or a servlet filter is fine in this situation that redirects to the
auth-website if cookie is not set or redirects to the associated php