• Post Reply Bookmark Topic Watch Topic
  • New Topic

Questions about Role authentication

 
Nicholas Cheung
Ranch Hand
Posts: 4982
  • Mark post as helpful
  • send pies
  • Quote
  • Report post to moderator
I would like to ask, if I have a web service which provides, say, 10 methods. 1 method can be called by any person, while the rest can only be called by *manager* role.

Thus, which type of endpoint should I use?
EJB, Servlets, or both?

Thanks.

Nick
 
Valentin Crettaz
Gold Digger
Sheriff
Posts: 7610
  • Mark post as helpful
  • send pies
  • Quote
  • Report post to moderator
There are some ideas/solutions about this issue exposed on BEA's eDocs website. Moreover, [url=http://java.sun.com/blueprints/guidelines/designing_webservices/security.pdf]chapter 7 of the "Designing Web Services with the J2EE(TM) 1.4 Platform" guidelines provides some insights on endpoint security. Is this enough to get you started?
 
Nicholas Cheung
Ranch Hand
Posts: 4982
  • Mark post as helpful
  • send pies
  • Quote
  • Report post to moderator
Thanks. I will take a look on it.

Nick
 
Gravity is a harsh mistress. But this tiny ad is pretty easy to deal with:
the new thread boost feature: great for the advertiser and smooth for the coderanch user
https://coderanch.com/t/674455/Thread-Boost-feature
  • Post Reply Bookmark Topic Watch Topic
  • New Topic
Boost this thread!