Presentation is loading. Please wait.

Presentation is loading. Please wait.

Server Concepts Dr. Charles W. Kann.

Published byClarissa Payne Modified over 5 years ago

Similar presentations

Presentation on theme: "Server Concepts Dr. Charles W. Kann."— Presentation transcript:

1 Server Concepts Dr. Charles W. Kann

2 Server Concepts Basic components in a web application architecture
Web Interface and transaction to application Parts of the application Session Routing Controllers Model View Application Model

3 Basic components in a web application architecture
Most modern applications consist of tiers (or layers), where the idea is that the tiers are designed in isolation with well defined interfaces which allow them to be “plugged in” and “swapped” where needed. Most applications consist of multiple tiers, each responsible for specific sets (or types) of tasks. They should do not other task. Can be implemented as objects, but objects have a much more application specific meaning (a Person or ArrayList is never a tier). Examples of objects that could be thought of as tiers are a “zip” object that takes a string and produces a “zipped” version of it. Another example is an encryption object.

4 OSI Model

5 Typical Web Application

6 Web Browsers Web browsers are often stateless
Old application used to maintain state through hidden variables. -- If you see one of these, it better be on a local net, because the state can be hacked! You can run a Java application in a browser We will keep state in a browser (later) when using AJAX. But don’t think about that now! For now, browsers take a form, present it to the user, and generate a transaction to be sent to the application.

7 Web Interface

8 Web Interface The web (or internet) interface is a complex labyrinth of computers, protocols, and messages designed to protect the applications. It can include (but is not limited to): Routers and other computers to unpack the message and send it to the web server. Network Address Translation (NAT) servers to determine the real address of the computer to get the message. Firewalls to filter packets, throwing away bad or malicious packets. Web Servers (Apache, IIS, etc) to route the packet to the correct application We don’t care what is there. From our point of view, it all produces a transaction that we can use in our application.

9 Transaction to application
Once the web interface has processed the message, a transaction is generated to an application. Included are: Request Header (e.g. content-type: text/json) URL to process (with protocol, how to route transaction) Protocol (put, get, delete, etc) Data needed to process the request.

10 Application Session An application is the program we are running to interact with the user. An application is typically run in an application server, in a module. Instances of modules are often called a containers. A container is generally (almost always) a process that contains: state objects for each connection (user login or browser connection) being managed by the application. A set (pool) of connections to a Data Base server to quickly access the database, called a connection pool. A set (pool) of threads to run the transactions on (note: this is difficult for some languages which do not support concurrency, such as Perl. Mod_perl is single threaded, but still runs transactions in a process because of the ease of handling connections as state objects).

11 Application Routing When a transaction is processed in the application, it must be sent to the correct method to handle that transaction. URL determines the controller to use. Protocol (get, put, delete, etc.) determine the method in that controller. Normally an application will contain a routing engine to correctly route the request.

12 Application Controllers
Each URL that can be processed will be associate with an application controller, and each request type (protocol) will be associated with a method. The application controller is responsible to authenticating the user for the request, building the model (or information handling object) for the request, and dispatching the view.

13 Application Model The application model is responsible to implementing all business logic and storage policies for the transaction The model is created in the controller, and used in the view to create the form to send back to the browser. This is the model complex part of the system, and so will get it own section of this talk.

14 Application View The view processes the data from the model to create a form to send back to the user.

15 Model

16 Model Authenticate and Authorize user – Done in Controller
Retrieve/store and validate data from/to the backing store (DB) Implement Business logic

17 Authenticate and Authorize User
Parts of security Identification – Are you who you say your are Authentication – Checking your access credentials Authorization – What are you allowed to do. Authentication – Devise and Authlogic Authorization – Pundit Authorization Role Based Authorization Document Base Authorization Classification (Secret, ACL, etc).

18 Database access Application authentication and authorization is handled in the controller, so the application (NOT the end user) is the user to the database. This means that there is a single user and password for the application in the database. Since all users go through the same account, a pool of connections are made to the database, and transactions are made through that pool. This is called a connection pool.

19 Object Relational Mapping
The application makes requests to the database for data that can be used in the application (hence as objects). Data in the database are access using a relational model, generally using Structured Query Language (SQL). To link the program to the database, an Object Relation Mapping is made from the relational database to application objects. The ORM software used in Rails is ActiveRecord. There are a number of ORM tools, e.g. myBatis, hibernate, etc.

20 Routing Engine Based on the transaction:
heading determines the format of the data (e.g. text/JSON) URL determines which controller to call Protocol determines which method to call in controller Payload or transaction data determines the specific action

21 Model-View-Controller (MVC) pattern
Model – The business logic and backing store. The data, what it means, etc. View – The form presented to the user, and the procedures generating it. Controller – Gets the information, decides how to build the model and transfer control to a view.

22 Applying this to ROR

Download ppt "Server Concepts Dr. Charles W. Kann."

Similar presentations

Welcome to Middleware Joseph Amrithraj

Welcome to Middleware Joseph Amrithraj
Network Layer and Transport Layer.

Network Layer and Transport Layer.
Computer Monitoring System for EE Faculty By Yaroslav Ross And Denis Zakrevsky Supervisor: Viktor Kulikov.

Computer Monitoring System for EE Faculty By Yaroslav Ross And Denis Zakrevsky Supervisor: Viktor Kulikov.
Database Security and Auditing: Protecting Data Integrity and Accessibility Chapter 5 Database Application Security Models.

Database Security and Auditing: Protecting Data Integrity and Accessibility Chapter 5 Database Application Security Models.
15 Chapter 15 Web Database Development Database Systems: Design, Implementation, and Management, Fifth Edition, Rob and Coronel.

15 Chapter 15 Web Database Development Database Systems: Design, Implementation, and Management, Fifth Edition, Rob and Coronel.
Chapter 14 TCP/IP and Routing Part #1 Unix System Administration.

Chapter 14 TCP/IP and Routing Part #1 Unix System Administration.
Web Server Administration

Web Server Administration
Web Servers How do our requests for resources on the Internet get handled? Can they be located anywhere? Global?

Web Servers How do our requests for resources on the Internet get handled? Can they be located anywhere? Global?
1 CS6320 – Why Servlets? L. Grewe 2 What is a Servlet? Servlets are Java programs that can be run dynamically from a Web Server Servlets are Java programs.

1 CS6320 – Why Servlets? L. Grewe 2 What is a Servlet? Servlets are Java programs that can be run dynamically from a Web Server Servlets are Java programs.
The Architecture of Transaction Processing Systems

The Architecture of Transaction Processing Systems
ASP.NET 2.0 Chapter 6 Securing the ASP.NET Application.

ASP.NET 2.0 Chapter 6 Securing the ASP.NET Application.
Chapter 5 Database Application Security Models

Chapter 5 Database Application Security Models
2/9/2004 Web and HTTP February 9, 2004. 2/9/2004 Assignments Due – Reading and Warmup Work on Message of the Day.

2/9/2004 Web and HTTP February 9, /9/2004 Assignments Due – Reading and Warmup Work on Message of the Day.
Understanding Networks Charles Zangla. Network Models Before I can explain how connections are made from across the country, I would like to provide you.

Understanding Networks Charles Zangla. Network Models Before I can explain how connections are made from across the country, I would like to provide you.
UNIT-V The MVC architecture and Struts Framework.

UNIT-V The MVC architecture and Struts Framework.
JVM Tehnologic Company profile & core business Founded: February 1992; –Core business: design and implementation of large software applications mainly.

JVM Tehnologic Company profile & core business Founded: February 1992; –Core business: design and implementation of large software applications mainly.
Web Servers Web server software is a product that works with the operating system The server computer can run more than one software product such as e-mail.

Web Servers Web server software is a product that works with the operating system The server computer can run more than one software product such as .
Databases and the Internet. Lecture Objectives Databases and the Internet Characteristics and Benefits of Internet Server-Side vs. Client-Side Special.

Databases and the Internet. Lecture Objectives Databases and the Internet Characteristics and Benefits of Internet Server-Side vs. Client-Side Special.
Week 7 Lecture Web Database Development Samuel Conn, Asst. Professor

Week 7 Lecture Web Database Development Samuel Conn, Asst. Professor
Lecture 7 Interaction. Topics Implementing data flows An internet solution Transactions in MySQL 4-tier systems – business rule/presentation separation.

Lecture 7 Interaction. Topics Implementing data flows An internet solution Transactions in MySQL 4-tier systems – business rule/presentation separation.

Similar presentations

Ads by Google