This week's book giveaway is in the Clojure forum.
We're giving away four copies of Clojure in Action and have Amit Rathore and Francis Avila on-line!
See this thread for details.
Win a copy of Clojure in Action this week in the Clojure forum!
  • Post Reply
  • Bookmark Topic Watch Topic
  • New Topic

JAAS Vs. Container managed security in web tier (managed at web.xml)

 
veena madhukar
Ranch Hand
Posts: 86
  • 0
  • Mark post as helpful
  • send pies
  • Quote
  • Report post to moderator
I have a requirement where in I have an application client as well as web client for my ejb application.

Coming to talk of secuity ---- I would like to confirm if my understanding is right.

Let us say that

I implement security in my java swing based application using the JAAS.
I implement security for my web tier using the container managed security in web.xml;
I implement security for my ejb tier using the container managed security in ejb-jar.xml;

I have the option to implement for my web and ejb tier to go for programmatic based implementation...however, since what the container provides is sufficient, i have chosen the same.

In swing based client applications by using JAAS --- we have the flexibilty to incorporate standard security mechanisms like Solaris NIS (Network Information Services), Windows NT, LDAP (lightweight access directory protocol), Kerberos, and others into our application in a consistent, configurable way;

In web tier / ejb tier if we had not gone by container managed declarative security then we would have had to go for managing the security programmatically. Is that also based on JAAS??? If not ...why is JAAS not used there?
 
Valentin Crettaz
Gold Digger
Sheriff
Posts: 7610
  • 0
  • Mark post as helpful
  • send pies
  • Quote
  • Report post to moderator
Moving this to the EJB and Other J2EE Technologies forum as the SCBCD exam does not deal with JAAS.

Thanks for your comprehension
 
I agree. Here's the link: http://aspose.com/file-tools
  • Post Reply
  • Bookmark Topic Watch Topic
  • New Topic