This week's book giveaway is in the OO, Patterns, UML and Refactoring forum.
We're giving away four copies of Refactoring for Software Design Smells: Managing Technical Debt and have Girish Suryanarayana, Ganesh Samarthyam & Tushar Sharma on-line!
See this thread for details.
The moose likes Architect Certification (SCEA/OCMJEA) and the fly likes Defining security requirements for WebApps Big Moose Saloon
  Search | Java FAQ | Recent Topics | Flagged Topics | Hot Topics | Zero Replies
Register / Login

JavaRanch » Java Forums » Certification » Architect Certification (SCEA/OCMJEA)
Bookmark "Defining security requirements for WebApps" Watch "Defining security requirements for WebApps" New topic

Defining security requirements for WebApps

MarioAixel Rodriguez Jaen

Joined: Mar 13, 2007
Posts: 15
Although it is pretty clear to me how to setup security constraints in J2EE, it is not clear how the different types of authentication mechanisms are implemented. For example, for the FORM type, where is the POST sending the data?

I need to know how to specify the database of username, passwords and roles in order to include it in my diagrams.

Any help is welcomed

Mario Rodriguez Jaen
SCJP1.4, SCJD1.4
I agree. Here's the link:
subject: Defining security requirements for WebApps
It's not a secret anymore!