摘要 |
A method, system, and computer program storage device are disclosed for providing security in a mashup comprised of an agglomeration of a plurality of portlets. These portlets are sent from one or more back-end servers, pass through a portal server, and are received by a client browser. The method comprises the steps of developing an isolation boundary between the portlets to isolate each of the portlets from each of the other portlets, and extending said isolation boundary through the portal server and through the browser. Preferably, the portal server bases the isolation boundary on a server-side static analysis and code instrumentation of the portlets. In the preferred embodiment of the invention, each of the portlets is checked for a number of syntactic constraints and marked with a corresponding service domain. The portlets are aggregated into a page-using HTML, and that page is converted into JavaScript.
|