This week's book giveaway is in the Servlets forum.
We're giving away four copies of Murach's Java Servlets and JSP and have Joel Murach on-line!
See this thread for details.
The moose likes Security and the fly likes Inplementing Basic security Big Moose Saloon
  Search | Java FAQ | Recent Topics | Flagged Topics | Hot Topics | Zero Replies
Register / Login


Win a copy of Murach's Java Servlets and JSP this week in the Servlets forum!
JavaRanch » Java Forums » Engineering » Security
Bookmark "Inplementing Basic security" Watch "Inplementing Basic security" New topic
Author

Inplementing Basic security

deeps sinha
Greenhorn

Joined: Apr 20, 2012
Posts: 26
Hello Everybody,
I want to implement role based access for my web application and I want to know a good way of doing it. For eg. I know one way -- in the jsp, i check roles with scriplet and run the block of code if it has the required roles. I want to know better ways of doing it. Please help me out.

Regards,
Deeps
deeps sinha
Greenhorn

Joined: Apr 20, 2012
Posts: 26
hi,
I have another doubt. I have been asked to use Jaas for Ldap authentication and authorisation. I mean if these two are different Realms right ? Please help....

Regards,
Deeps
Tim Moores
Rancher

Joined: Sep 21, 2011
Posts: 2408
If I were to implement security for a new project, I'd use Apache Shiro. It goes way beyond what the servlet security implemented by the servlet container provides, and -amongst many things- has a tag library you can use in your JSPs instead of scriptlets.
deeps sinha
Greenhorn

Joined: Apr 20, 2012
Posts: 26
Thanks Tim, this is a good framework. Is there a detailed documentation or BOOK on Shiro. Also would like to know the disadvantages of shiro. I could not find any on the web.

Regards,
Deeps
 
 
subject: Inplementing Basic security
 
Similar Threads
Using database roles in a J2EE application
Struts 2 package name in Interceptor
Get List Of Roles
Does anyone have experience of using XP Extreme Programming, J2EE, EJB.
SCBCD Time to Evaluate (To Evelyn and Ranchers)