Book Image

PhoneGap for Enterprise

By : Kerri Shotts
Book Image

PhoneGap for Enterprise

By: Kerri Shotts

Overview of this book

Related Content you might be interested in

Current Title:

Small book image
PhoneGap for Enterprise
Kerri Shotts
Dec, 2014 | 192 pages
No titles found
Table of Contents (16 chapters)
PhoneGap for Enterprise
PhoneGap for Enterprise
Credits
Credits
About the Author
About the Author
About the Reviewers
About the Reviewers
www.PacktPub.com
www.PacktPub.com
Preface
Preface
Free Chapter
1
PhoneGap and Enterprise Mobility
PhoneGap and Enterprise Mobility
Why PhoneGap/Cordova?
History behind PhoneGap and Cordova
Easy cross-platform development
Cordova app architecture
Summary
2
Building the Data Store and Business Logic
Building the Data Store and Business Logic
Introducing Tasker
Server architecture
Designing your data models
Designing the business logic
Permissions model
Summary
3
Securing PhoneGap Apps
Securing PhoneGap Apps
General security precautions
Server-specific security precautions
Cordova-specific security precautions
Summary
4
Building the Middle-Tier
Building the Middle-Tier
Middle-tier architecture
Designing a RESTful-like API
Building our API using Node.js
Summary
5
Communicating between Mobile and the Middle-Tier
Communicating between Mobile and the Middle-Tier
Getting started
Promises
Ensuring secure communication
Communicating with the backend using XHR
Authenticating the user with the backend
Summary
6
Application Events and Storage
Application Events and Storage
Getting ready
Determining network connectivity
Getting the current network type
Detecting changes in connectivity
Handling connectivity issues
Handling changes in the application state
Responding to application-level events
Storing local data using SQLite
Storing data in the iOS Keychain
Summary
7
Push Notifications
Push Notifications
Delving into Push Notification architecture
Boxcar Universal Push Notifications Platform
Setting up Google Cloud Messages with Boxcar
Integrating Boxcar with PhoneGap/Cordova
Receiving Pushes from Boxcar
Sending a Push via Boxcar
Summary
8
Building the Presentation Tier
Building the Presentation Tier
Mock-up design tools
Libraries and frameworks
Common patterns
Presentation of the app
Seeing it in action
Summary
Useful Resources
Useful Resources
Chapter 1 – PhoneGap and Enterprise Mobility
Chapter 2 – Building the Data Store and Business Logic
Chapter 3 – Securing PhoneGap Apps
Chapter 4 – Building the Middle-Tier
Chapter 5 – Communicating between Mobile and the Middle-Tier
Chapter 7 – Push Notifications
Chapter 8 – Building the Presentation Tier
Index
Index

Server-specific security precautions

Because very few apps are silos, we need to ensure that the backend is also secure using security best practices.

Securing your backend

It goes without saying that if your backend servers are vulnerable, your entire system is also vulnerable. This includes your app, the data it processes, and your infrastructure (one vulnerable server can often serve as a foothold for an invading attacker).

Although we can't cover every scenario, we can give a few guidelines:

  • Prevent root from logging in directly; require sudo from specific accounts in order to perform tasks requiring administrative privileges.

  • Create accounts for your specific applications and grant them only the rights they actually need to have (avoid programs running on your server as root).

  • Configure SSH to permit authentication only via key. Not only is it nice to log in from a trusted machine without a password, it can also enhance security by preventing password authentication (passwords are shorter...

Previous Section
End of Section 3
Next Section