Develop a Secure Java EE Product Catalog Management Application for the functionality described in the requirements...
Fantastic news! We've Found the answer you've been seeking!
Question:
Transcribed Image Text:
Develop a Secure Java EE "Product Catalog Management Application" for the functionality described in the requirements section. For each product in the catalog, product data should include product code, product brand, quantity in hand, and product unit price. Requirements Security requirements 1. The application should use HTTPS protocol for communication 2. The application should use in-memory realm for user authentication 3. The application should use FORM-based authentication 4. The organizational security policy for the application is that the application can be used by only the users with ADMIN role and the users with CUSTOMER role. Any user with role(s) other than the ADMIN or CUSTOMER should not be permitted to access the application. 5. A user with ADMIN role can add a product, delete a product, or modify the product data in the catalog. 6. A user with CUSTOMER role can search the catalog for a product code, or product brand, or product unit price, and can view the list of all products. Database requirements 7. The application should use H2 database to store the product data for the catalog 8. The application should use Named ParameterJdbcTemplate class for database interactions Other requirements 9. The application should use Thymeleaf fragment to include footer on each webpage in the view with student number and student name. 10. The application should be coded using the best coding practices 11. The application should be complete, i.e., each required feature should be implemented. And tested 12. Design the application using MVC design pattern as you consider appropriate. The design should be your own thinking. Note: Consider Assignment 3 as an opportunity to show your Java EE application development skills. Use your original ideas to design the view (i.e., the web pages) and architect the application using MVC design pattern. PROG32758-P11- Summer2022 Testing Test the application for three users: 1 2 3 Username UserA UserB UserC 1 Architecture 2 3 4 5 Assessment Submitted work will be assessed for Assignment 3 Total Password Submission 1. Please create a new Spring Boot project. Name the project as LastNameFirstName-Assign3. 2. Test each link and input field for correct performance and completeness of the application. 3. Submit two documents: Zipped Spring Boot project and a word document with the required screenshots. View Security Code quality Functionality/ completeness aaaa bbbb CCCC For the screenshots, create a new word document and name it as LastNameFirstName-Assign3- Screenshots. Enter your name, student number, and the date in the beginning of the document. Add the following screenshots to the document: i. Run the application from Eclipse (Right click the project → Run As → Spring Boot Application), take the console screenshot showing the Spring Boot deployment of the application on Apache Tomcat. Use print screen (prt sc) button to take the screenshot and then paste the screenshot in the word document. Note: Please make sure that the screenshot shows the port# where the application is deployed. ii. Open a browser, type https://localhost:port# in the URL window of the browser, and hit return. It should show the idex.html page of the application. Take a screenshot and paste to the word document. iii. Take screenshot of each web page of the application and paste to the word document. iv. Include the screenshot even if there is an error. Roles ADMIN Note: Please make sure that (i) The URL window in the screenshot shows the port# from where the application is executed. Max. points 15 30 30 10 15 100 CUSTOMER ADMIN, CUSTOMER (ii) The screenshot should not be edited 4. Zip the project folder. Upload the .zip folder and the word document with screenshots to Assignment 3 folder in the Assignments tab on SLATE. 5. Assignment 3 is due on Wednesday August 03, 2022,11:55 pm. However late submissions will be accepted till Saturday August 06, 2022, 11:55 pm with 10% penalty for each day (including weekend and holidays). 6. No email submissions will be accepted. Page 2 of 3 Score Comments Includes Thymeleaf fragment for a footer Includes https and accurate security controls Includes indentation, proper names, and comments All functions with proper security controls. PROG32758-P11- Summer2022 Assignment 3 Page 3 of 3 Always stamp your work with excellence! (Assignment 3 handout developed by Dr. Muhammad Shafique: Friday, July 23, 2022) Develop a Secure Java EE "Product Catalog Management Application" for the functionality described in the requirements section. For each product in the catalog, product data should include product code, product brand, quantity in hand, and product unit price. Requirements Security requirements 1. The application should use HTTPS protocol for communication 2. The application should use in-memory realm for user authentication 3. The application should use FORM-based authentication 4. The organizational security policy for the application is that the application can be used by only the users with ADMIN role and the users with CUSTOMER role. Any user with role(s) other than the ADMIN or CUSTOMER should not be permitted to access the application. 5. A user with ADMIN role can add a product, delete a product, or modify the product data in the catalog. 6. A user with CUSTOMER role can search the catalog for a product code, or product brand, or product unit price, and can view the list of all products. Database requirements 7. The application should use H2 database to store the product data for the catalog 8. The application should use Named ParameterJdbcTemplate class for database interactions Other requirements 9. The application should use Thymeleaf fragment to include footer on each webpage in the view with student number and student name. 10. The application should be coded using the best coding practices 11. The application should be complete, i.e., each required feature should be implemented. And tested 12. Design the application using MVC design pattern as you consider appropriate. The design should be your own thinking. Note: Consider Assignment 3 as an opportunity to show your Java EE application development skills. Use your original ideas to design the view (i.e., the web pages) and architect the application using MVC design pattern. PROG32758-P11- Summer2022 Testing Test the application for three users: 1 2 3 Username UserA UserB UserC 1 Architecture 2 3 4 5 Assessment Submitted work will be assessed for Assignment 3 Total Password Submission 1. Please create a new Spring Boot project. Name the project as LastNameFirstName-Assign3. 2. Test each link and input field for correct performance and completeness of the application. 3. Submit two documents: Zipped Spring Boot project and a word document with the required screenshots. View Security Code quality Functionality/ completeness aaaa bbbb CCCC For the screenshots, create a new word document and name it as LastNameFirstName-Assign3- Screenshots. Enter your name, student number, and the date in the beginning of the document. Add the following screenshots to the document: i. Run the application from Eclipse (Right click the project → Run As → Spring Boot Application), take the console screenshot showing the Spring Boot deployment of the application on Apache Tomcat. Use print screen (prt sc) button to take the screenshot and then paste the screenshot in the word document. Note: Please make sure that the screenshot shows the port# where the application is deployed. ii. Open a browser, type https://localhost:port# in the URL window of the browser, and hit return. It should show the idex.html page of the application. Take a screenshot and paste to the word document. iii. Take screenshot of each web page of the application and paste to the word document. iv. Include the screenshot even if there is an error. Roles ADMIN Note: Please make sure that (i) The URL window in the screenshot shows the port# from where the application is executed. Max. points 15 30 30 10 15 100 CUSTOMER ADMIN, CUSTOMER (ii) The screenshot should not be edited 4. Zip the project folder. Upload the .zip folder and the word document with screenshots to Assignment 3 folder in the Assignments tab on SLATE. 5. Assignment 3 is due on Wednesday August 03, 2022,11:55 pm. However late submissions will be accepted till Saturday August 06, 2022, 11:55 pm with 10% penalty for each day (including weekend and holidays). 6. No email submissions will be accepted. Page 2 of 3 Score Comments Includes Thymeleaf fragment for a footer Includes https and accurate security controls Includes indentation, proper names, and comments All functions with proper security controls. PROG32758-P11- Summer2022 Assignment 3 Page 3 of 3 Always stamp your work with excellence! (Assignment 3 handout developed by Dr. Muhammad Shafique: Friday, July 23, 2022)
Expert Answer:
Answer rating: 100% (QA)
Alright this is quite a detailed assignment Lets break it down Architecture 15 points Start by creat... View the full answer
Related Book For
Auditing and Assurance services an integrated approach
ISBN: 978-0132575959
14th Edition
Authors: Alvin a. arens, Randal j. elder, Mark s. Beasley
Posted Date:
Students also viewed these programming questions
-
can someone solve this Modern workstations typically have memory systems that incorporate two or three levels of caching. Explain why they are designed like this. [4 marks] In order to investigate...
-
In 2013, Natural Selection, a nationwide computer dating service, had $500 million of assets and $200 million of liabilities. Earnings be-fore interest and taxes was $120 million, interest expense...
-
Dover Corporation makes printed cloth in two departments: weaving and printing. Currently, all product first moves through the weaving department and then through the printing department before it is...
-
Find the directions in which increases and decreases most rapidly at P 0 and find the derivative of in each direction. Also, find the derivative of at P 0 in the direction of the vector v. (x, y)...
-
For the following products and countries, identify the type of warehouse that should be used as well as the method of transportation that should deliver the product to end users. Using the Internet,...
-
Innova uses 1,000 units of the component IMC2 every month to manufacture one of its products. The unit costs incurred to manufacture the component are as follows. Direct materials .... $ 65.00 Direct...
-
Explain the types of anomalies that might occur on this relational model when not normaliz ed NORMALIZATION (40 Points) Consider a COLLEGE logical relational model below....
-
The audit firm of DCG, LLP is performing an audit of Argo Co., a publicly traded company, for the year ending December 31, 2014. You have been given the assignment of assisting in the planning...
-
Write a detailed analysis on the Real estate market
-
In a year when inventory increased from $100,000 to $140,000, Toffee Co. had sales of $500,000 on which a gross profit of 40% was earned. On average, how many days did it take the company to sell its...
-
Players in the Indian smartphone industry release new models every few months in an attempt to ensure that their products stay on top. This means that once a new model is released, the demand for...
-
Identify an advantage of a public listing from the perspective of the issuer. Ease of raising additional capital due to established market value. Costs of exchange listing. Need to disclose material...
-
Which financial statement would you find Property, Plant and Equipment, Intangibles and/or Natural Resources? explain why.
-
What is the day of the independence of Mexico from Spain?
-
How is scope management different on agile projects?
-
A simple random sample of 220 university students were asked what pasta they usually order and with which sauce. The preferences of these respondents are summarised below: Sauce Bolognese Pasta...
-
Groton, CPAs, were the auditors of Bank & Company, a brokerage firm and member of a national stock exchange. Gordon & Groton audited and reported on the financial statements of Bank, which were filed...
-
What factors should an auditor consider prior to accepting an engagement? Explain.
-
Distinguish the three forms of compilation reports that a CPA can provide to clients.
-
Explain why some employees are not comfortable being team players.
-
It is important to learn how to develop a comprehensive, clearly articulated team charter. Assume that you and your fellow students are a team in an organization (you choose the kind and size of...
-
Define effective listening .
Study smarter with the SolutionInn App