Databases
StackOverflow2013
Usersdbo
USKim L
 

Note that there are some explanatory texts on larger screens.

plurals
  1. USKim L
    primarykey
    data
    text
    plurals
    1. PO
      singulars
      1. PTAnswer
    2. POCreating a sequence based on some criterions
      singulars
      1. PTQuestion
    3. PO
      singulars
      1. PTAnswer
    1. POTwo-way relation in JPA
      singulars
      1. PTQuestion
    2. POAnnotation a Map containig a non-entity class in JPA
      singulars
      1. PTQuestion
    3. POHow to use @BasicMap for a HashMap whose key values are entities
      singulars
      1. PTQuestion
    1. VO
      singulars
      1. POHiding deleted objects
      1. USKim L
      1. VTBountyStart
    2. VO
      singulars
      1. This table or related slice is empty.
      1. USKim L
      1. VTFavorite
    3. VO
      singulars
      1. POQuality assurance in small developer teams
      1. USKim L
      1. VTBountyStart
    1. COHibernate lazy loading exceptions are common with Vaadin if you don't handle them correctly. Usually, you will use a session-per-request pattern, which means that your entities will be deattached from the hbn session at the end of the http request. If you try to lazy load anything outside the same http request, a lazy loading exception will be thrown - unless you re-attach the entity to the active session.
      singulars
      1. PO
      1. USKim L
    2. CO@The Rook, like I said, I misread your response and my comment was about multi-paged forms. The iframe only helps when attacking multi-paged forms, it had nothing to do with the referer header. Here's an example of how an application can be tricked into thinking the referrer is something else than what it actually is. This attack doesn't actually spoof the referer header, but rather demonstrates that everything isn't exactly what you think it is. Make sure you read other blog posted linked to in the beginning. http://blog.quaji.com/2009/08/facebook-csrf-attack-full-disclosure.html
      singulars
      1. PO
      1. USKim L
    3. CO@The Rook, sorry, re-read your post and what you described will work as it is basically the same I described in my reply, just another strategy for creating the secret token. I first read that your post was about a multi-paged form, which I described an attack for (it will work if the pages are predictable and thus there is no need to read the HTTP response). My attack is valid and doesn't conflict with the same origin policy, as it never requires to read the response. In other words, my bad. If you still think my attack is not valid, I can provide you with a proof-of-concept :)
      singulars
      1. PO
      1. USKim L
 

Querying!

 
Guidance
A row detail

Detail views are divided into sections. All the information in the data section comes from columns in the selected row. The other sections display data from other, related rows.

Related data can be related in a to-one or a to-many fashion. Captions of data related in a to-many fashion link to a list view showing a filtered view of the table.

Try moving around until you find a non-empty to-many entry and click on the label to get to one. You can move back to the root by clicking on the database name in the header.

SQuiL has stopped working due to an internal error.

If you are curious you may find further information in the browser console, which is accessible through the devtools (F12).

Reload