Win a copy of Java 9 Modularity: Patterns and Practices for Developing Maintainable Applications this week in the Java 9 forum!
  • Post Reply Bookmark Topic Watch Topic
  • New Topic

Part II - Securing web & gui apps  RSS feed

 
Luciano Queiroz
Ranch Hand
Posts: 172
  • Mark post as helpful
  • send pies
  • Quote
  • Report post to moderator
Hi mates!

Could anyone share any idea about how to secure FBN?
We have 2 approaches here: the web application used by customers and the swing application used by travel agents.
The specification says that all interactions must be under SSL.
Do I have to define a "user-login" component?
I planned to adopt declarative security, where the container takes care of everything. But how can I do this in the travel agent app? Would JAAS be the best choice?
I also read about a kind of authorization filter, performed by a servlet.

Please, let me know your thoughts.

Thanks!
  • Post Reply Bookmark Topic Watch Topic
  • New Topic
Boost this thread!