Changes between Version 7 and Version 8 of ClientDataModel


Ignore:
Timestamp:
Jul 19, 2011, 1:31:10 PM (13 years ago)
Author:
davea
Comment:

--

Legend:

Unmodified
Added
Removed
Modified

  • ClientDataModel

    v7 v8  
    6868The app must use file locking to ensure that two jobs
    6969don't try to generate the file at the same time.
     70
     71== Upload certificates ==
     72
     73Upload certificates are a mechanism to prevent upload server DoS attacks,
     74and also to prevent an attack in which bad guys upload result files
     75for other users' jobs.
     76Currently no projects that I know of use this mechanism,
     77but it is worth keeping available.
     78
     79Current: the upload certificate is a signature of the rest of
     80the <file_info> element.
     81
     82Problem: this makes <file_info> elements sensitive to white space changes,
     83and it makes it difficult to parse <file_info> using XML_PARSER.
     84
     85Solution: the upload certificate is a signature of
     86{{{
     87<name>x</name><max_nbytes>N</max_nbytes>
     88}}}
     89(no white space).
     90
     91== Server changes ==
     92
     93 * file_upload_handler: parse the request with XML_PARSER, then convert to above form