aspose file tools*
The moose likes Security and the fly likes JAAS API usage with Oracle DB Big Moose Saloon
  Search | Java FAQ | Recent Topics | Flagged Topics | Hot Topics | Zero Replies
Register / Login


Win a copy of EJB 3 in Action this week in the EJB and other Java EE Technologies forum!
JavaRanch » Java Forums » Engineering » Security
Bookmark "JAAS API usage with Oracle DB" Watch "JAAS API usage with Oracle DB" New topic
Author

JAAS API usage with Oracle DB

Kavya Anjali
Ranch Hand

Joined: Mar 23, 2006
Posts: 30
We are looking for role based authorization by using JAAS API. Roles data is available in database (oracle DB), how can we implement the JAAS authorization custom module by interacting with external DB, not the policy file and LDAP data store.

Are there good articles for JAAS API usage? If so please post them as well.

Please help on this issue.


SCJP 5.0
Ulf Dittmer
Marshal

Joined: Mar 22, 2005
Posts: 39535
    
  27
The Security FAQ links to some introductory articles covering JAAS.


Ping & DNS - updated with new look and Ping home screen widget
Rahul Bhattacharjee
Ranch Hand

Joined: Nov 29, 2005
Posts: 2308
Basically for authentication you can use absolutely anything as credential store for your application.You can then use Authorisation part of JAAS (login module)for doing the actual authentication.JAASs authorization is build on the top of javas policy based premissions.so you can associate required custom premission with principals and then populate the subject with those principals after a successful authentication.
The following articles might help.

http://www-128.ibm.com/developerworks/java/library/j-jaas/

http://cyberspace.org/~rahul123/JAAS.html


Rahul Bhattacharjee
LinkedIn - Blog
Kavya Anjali
Ranch Hand

Joined: Mar 23, 2006
Posts: 30
Thanks for the reply..will try out the suggestions...
 
I agree. Here's the link: http://aspose.com/file-tools
 
subject: JAAS API usage with Oracle DB
 
Similar Threads
EJB Security
Simple secured application
J2EE and Database authorization
Form Based authentication using JAAS and JBoss
When to not use EJB