I'm wondering if someone could provide a few more details regarding this statement
here:
"This approach may be extremely disruptive to some appserver deployments and
depending on some security policies may
not work at all. "
(from
http://www.jboss.org/errai/ErraiBus.html)
Is this statement more from a load point of view? I assume the server could potentially
have _many_ open connections. But, I'm wondering from a security point of view if it
puts the client in a more susceptible position to things like cross scripting, or other
security exploitations.
Our intended purposes would be do have the server behind https with jaas. But we have
security scans and wonder if having persistent connections might cause us to be flagged...
But, I've got a very nice example working... and appreciate all the help earlier.
Just now trying to make a case regarding the security implications of this framework.
Any thoughts would be appreciated.
Chris