Question
6
Replies
1772
Views
Posted: October 27, 2016
Last activity: November 15, 2016
Closed
Solved
Direct Web Access Security
We are currently developing an application which utilises the OOTB Direct Web Access functionality. From a security perspective I understand that a once only identifier is generated and this is authenticated and also the external assignment must be static page. However is there any online documentation providing information regarding built in security validation of the form to avoid SQL injection attacks or other similar malicious activities?
I hope you must have found some of the articles related to DWA over PDN. But with regards to security validation of the form to avoid SQL injection attacks or other similar malicious activities, we will look into this and come back.
DWA Reference:
https://pdn.pega.com/how-customize-directed-web-access
https://pdn.pega.com/how-implement-directed-web-access