We have a web application consisting of web tier (PHP), application tier (Java) and DB (mysql). the web layer contacts the application AND with the database to obtain some data. One of our clients insists on sharing each level with a firewall and blocking traffic from the web level to the database. They claim that this is unsafe, and the application must have a “retrieve data” function that will be used by the web tier instead of reading data directly from the database.
It seems like a real waste of tunneling data through the application, when it can be easily accessed through the web tier directly from the database. Read-only data can come from highly optimized views and can be presented as is. This greatly simplifies the design and eliminates additional problems such as paging. This technology is known as Fast-Lane-Reader and protects read-only tabular data directly from the database. For updates, the application is used when business rules are applied.
So my question is, is it possible to adjust this three-level topology with a firewall and allow direct traffic from the Internet to db levels?
Thanks in advance, Filopator.
, , , / (-) ( ), .
-, -, . , - ( , , ), .
-, . , PHP ASP.NET Mobile OS, , , .
, , , . . .
, "", , . , . , ( ). ? , , . , ( , ). , -. , .
, : , , PHP ( Java).
:
, Java-, facade. ( ) , PHP ( , PHP-). Java. Java ( PHP ).
, , Java PHP , BOTH-. ( ) , Java PHP.
, , , FrontEnd (PHP) DataLayer (MySql), - UI → .
, Java, java, UI .
, , , , , , , , java php.
, " " , . / , // .
Imagine you have a WidgetService.addWidget () service method in your Java code. You want all widgets to be the types the current user is allowed with, so addWidget () checks the permissions for this. Now, if your PHP code is trying to directly add a widget to the database, it bypasses these checks.
Source: https://habr.com/ru/post/1793984/More articles:https://translate.googleusercontent.com/translate_c?depth=1&pto=aue&rurl=translate.google.com&sl=ru&sp=nmt4&tl=en&u=https://fooobar.com/questions/1793979/getting-access-token-from-cookies-to-use-with-facebook-graph-api&usg=ALkJrhiff8505WXMY2nP6WrVcFQ-SeIApQJapanese characters display strange distance in Android TextView and buttons - androidWhy do you sometimes need to add JARs to your build path, and sometimes not? - javaСвойство Binding enabled из CheckedListBox.Items - Winforms - .netSignal processing in the shell of Emacs and Cygwin - bashSqlite data file on Linux and OS X incompatible? - linuxПоиск изменений CSS в селене - cssMagento: рендеринг пустой страницы при вызове шаблона из Ajax - phpTesseract problem with mftraining stage - tesseractJava array preg_match - javaAll Articles