This week's giveaway is in the Android forum.
We're giving away four copies of Android Security Essentials Live Lessons and have Godfrey Nolan on-line!
See this thread for details.
The moose likes Servlets and the fly likes authentication & authorization in JavaEE Big Moose Saloon
  Search | Java FAQ | Recent Topics | Flagged Topics | Hot Topics | Zero Replies
Register / Login


Win a copy of Android Security Essentials Live Lessons this week in the Android forum!
JavaRanch » Java Forums » Java » Servlets
Bookmark "authentication & authorization in JavaEE" Watch "authentication & authorization in JavaEE" New topic
Author

authentication & authorization in JavaEE

azhar bharat
Ranch Hand

Joined: Jul 17, 2006
Posts: 87
which is the best approach to implement authentication & authorization in JavaEE application?
Ulf Dittmer
Marshal

Joined: Mar 22, 2005
Posts: 41137
    
  45
A good start would be the HTTP-based authentication that's part of the servlet specification. It also supports a role concept that may be sufficient for authorization.

If you want something beefier, has a look at the JAAS API.


Ping & DNS - my free Android networking tools app
azhar bharat
Ranch Hand

Joined: Jul 17, 2006
Posts: 87
can you give some links?
what are the benifits of using JAAS.
Ulf Dittmer
Marshal

Joined: Mar 22, 2005
Posts: 41137
    
  45
The SecurityFaq has a number of links regarding both web app security and JAAS.
Rahul Bhattacharjee
Ranch Hand

Joined: Nov 29, 2005
Posts: 2308
Originally posted by azhar bharat:
which is the best approach to implement authentication & authorization in JavaEE application?


Might help


Rahul Bhattacharjee
LinkedIn - Blog
 
I agree. Here's the link: http://aspose.com/file-tools
 
subject: authentication & authorization in JavaEE
 
Similar Threads
How to make this safe
JAAS
Authorisatio & autiontication
Passed Part II and III with 88%! Some tips
authentication vs authorization