• Post Reply
  • Bookmark Topic Watch Topic
  • New Topic

Part II - Securing web & gui apps

 
Luciano Queiroz
Ranch Hand
Posts: 172
  • Mark post as helpful
  • send pies
  • Quote
  • Report post to moderator
Hi mates!

Could anyone share any idea about how to secure FBN?
We have 2 approaches here: the web application used by customers and the swing application used by travel agents.
The specification says that all interactions must be under SSL.
Do I have to define a "user-login" component?
I planned to adopt declarative security, where the container takes care of everything. But how can I do this in the travel agent app? Would JAAS be the best choice?
I also read about a kind of authorization filter, performed by a servlet.

Please, let me know your thoughts.

Thanks!
 
  • Post Reply
  • Bookmark Topic Watch Topic
  • New Topic