The following assignment should be done using any JEE Application Server and servlets.
Introduction:
We are maintaining accounts and statements in MSAccess data base (accountsdb).
The data base contains two tables.
- Account table: describes the accounts with their account id, number and type.
- Statement table: describes statements which belong to an account with id, date and the running balance.
Basic Handling:
The server will handle requests to view statements by performing simple search on date and amount ranges.
- The request should specify the account id.
- The request can specify from date and to date (the date range).
- The request can specify from amount and to amount (the amount range).
- If the request does not specify any parameter then the search will return three months back statement.
- If the parameters are invalid a proper error message should be sent to user.
- The account number should be hashed before sent to the user.
- All the exceptions should be handled on the server properly.
Authentication and Security:
We want to add login and session management functionality.
The authenticated users are:
User1:
User name: testadmin
Password: adminpassword
User2:
User name: testUser
Password: userassword
- The ‘testadmin’ user is able to perform all the requests (specify date and amount range).
- The ‘testUser’ can only do a request without parameters which will return the three months back statement.
- When the test user tries to specify any parameter, then HTTP unauthorized access error will be sent.
- The user cannot login twice (the user should logout before login).
- The session time out is 5 minutes.
Database information:
Database file: [login to view URL] located in desktop
Tables:
account
ID: Autonumber
account_type: Text
account_number: Text
statement:
ID: Autonumber
account_id: Number
datefield: Text
amount: Text
(Note that datefield and amount are in text format so applying range cannot be in the database level)
We are a team of developers with great experience. We have many experiences with different technologies. We can do the work for you quickly and qualitatively.