Java
  Home arrow Java arrow JAAS, Securing EJB
Dev Articles Forums 
ADO.NET  
Apache  
ASP  
ASP.NET  
C#  
C++  
ColdFusion  
COM/COM+  
Delphi-Kylix  
Design Usability  
Development Cycles  
DHTML  
Embedded Tools  
Flash  
Graphic Design  
HTML  
IIS  
Interviews  
Java  
JavaScript  
MySQL  
Oracle  
Photoshop  
PHP  
Reviews  
Ruby-on-Rails  
SQL  
SQL Server  
Style Sheets  
VB.Net  
Visual Basic  
Web Authoring  
Web Services  
Web Standards  
XML  
Mobile Linux 
App Generation ROI 
IBM® developerWorks 
Weekly Newsletter
 
Developer Updates  
Free Website Content 
 RSS  Articles
 RSS  Forums
 RSS  All Feeds
Write For Us Get Paid 
Request Media Kit
Contact Us 
Site Map 
Privacy Policy 
Support 
 USERNAME
 
 PASSWORD
 
 
  >>> SIGN UP!  
  Lost Password? 
JAVA

JAAS, Securing EJB
By: A.P.Rajshekhar
  • Search For More Articles!
  • Disclaimer
  • Author Terms
    		•
    Rating: 5 stars5 stars5 stars5 stars5 stars / 12
    2005-08-24

    Table of Contents:
  • JAAS, Securing EJB
  • JAAS and J2EE Container Interaction
  • JAAS and EJB- Implementing JAAS for EJB
  • Authenticating the user within the EJB
    		•

    Rate this Article: Poor Best 
      ADD THIS ARTICLE TO:
      Del.ici.ous Digg
      Blink Simpy
      Google Spurl
      Y! MyWeb Furl
    Email Me Similar Content When Posted
    Add Developer Shed Article Feed To Your Site
    Email Article To Friend
    Print Version Of Article
    PDF Version Of Article
    		 
     
    ADVERTISEMENT

    JAAS, Securing EJB
    (Page 1 of 4 )

    The first article in this two-part tutorial discussed how to secure web components when using the JAAS framwork. Since J2EE components are divided into web components and business components, the next logical step is to learn how to secure business components. That is the topic of this article.

    Last time we discussed securing web components, for example JSPs and servlets using the JAAS framework. The next natural step is securing business components. But before moving into this realm of securing J2EE applications, let's recapitulate. The following were the steps required to secure web components:

    1. Implement the LoginModule.
    2. Write the CallBackHandler. 
    3. Providing custom implementations for Principal and Action(this is optional).
    4. Configure the JAAS policy file.
    5. Configure the J2EE Application server.

    Though the complete procedure was traced step-by-step, something was left out. The interaction between the JAAS framework and the J2EE containers needs to be understood. This is more essential in the case of business components as a part of the declarative approach comes into picture. So first I will discuss the interaction in detail, and then move on to the implementation of JAAS in securing EJB.

    Next: JAAS and J2EE Container Interaction >>
     

    More Java Articles
    More By A.P.Rajshekhar


       · HiThe issue of security is omnipresent. Web development is no exception. In this...
       · Hi,After reading your article, I need some clarifications.Web and ejb...
       · Hi anonymousIt is a good question. The reality is that EJB can only authorize that...
     
    >>> Post your comment now!

    JAVA ARTICLES

    - Deploying Multiple Java Applets as One
    - Deploying Java Applets
    - Understanding Deployment Frameworks
    - Database Programming in Java Using JDBC
    - Extension Interfaces and SAX
    - Entities, Handlers and SAX
    - Advanced SAX
    - Conversions and Java Print Streams
    - Formatters and Java Print Streams
    - Java Print Streams
    - Wildcards, Arrays, and Generics in Java
    - Wildcards and Generic Methods in Java
    - Finishing the Project: Java Web Development ...
    - Generics and Limitations in Java
    - Getting Started with Java Web Development in...
    Find More Java Articles






    © 2003-2010 by Developer Shed. All rights reserved. DS Cluster 8 Hosted by Hostway
    For more Enterprise Application Development news, visit eWeek