This week's book giveaway is in the Servlets forum.
We're giving away four copies of Murach's Java Servlets and JSP and have Joel Murach on-line!
See this thread for details.
The moose likes JSF and the fly likes Security in JSF Big Moose Saloon
  Search | Java FAQ | Recent Topics | Flagged Topics | Hot Topics | Zero Replies
Register / Login

Win a copy of Murach's Java Servlets and JSP this week in the Servlets forum!
JavaRanch » Java Forums » Java » JSF
Bookmark "Security in JSF" Watch "Security in JSF" New topic

Security in JSF

sergey zhmura

Joined: Oct 07, 2009
Posts: 1
Hi, everyone!
I have to manage security (the quantity of roles and groups is rather huge) in java ee 5 + jsf (1.x) project without using mapping application roles to appserver roles in realms but using my own database. How can I do control access to resources and modify the presentation depending on users coming in runtime mode? And will it be efficient with using jsf at all? Please, provide your own ideas of solving this problem.

Viswanath Tg

Joined: Nov 27, 2007
Posts: 20
Using Acegi Security is the best way to manage Security...
In acegi Secutiy implement DAO Authentication for validating the
logged user againest DB

Helping hands are better than praying lips
I agree. Here's the link:
subject: Security in JSF
Similar Threads
How to hide or display jsf pages based on type of user question
Best practice for secure login authorisation
isUserInRole() clarification please
Web application with customized pages
Spring Security different roles and security taglibs