Win a copy of The Little Book of Impediments (e-book only) this week in the Agile and Other Processes forum!
  • Post Reply
  • Bookmark Topic Watch Topic
  • New Topic

Security and JAAS - If anyone knows

 
Bahadar Khan
Ranch Hand
Posts: 81
  • Mark post as helpful
  • send pies
  • Quote
  • Report post to moderator
I just want to know, as whatever we have studied regarding security ( SCWCD ) and how it fits in for JAAS. Is this something JAAS defines in a more convinient way the same we are doing manually? How these two relate ? I know it might be little off-track but nonetheless related. If somebody could tell something, including Authors of HF, Honourary Authors or plain ranchers like myself.

Thanks in Advance.
 
Sami Sayeed
Ranch Hand
Posts: 39
  • Mark post as helpful
  • send pies
  • Quote
  • Report post to moderator
I guess for the SCWCD we just study how to use declarative security, but not indepth of JAAS,though JAAS supports the security configured in the web.xml
in SCWCD I think we just study a bit of only web-tier security and not the web services or ejb-tier security.
In JAAS the components involved are Authenticators,Adjudicators,Authorisers.
Here are some links
http://java.sun.com/j2se/1.4.2/docs/guide/security/index.html
contract for containers
http://java.sun.com/j2ee/javaacc/
Correct me If Iam Wrong
 
Bahadar Khan
Ranch Hand
Posts: 81
  • Mark post as helpful
  • send pies
  • Quote
  • Report post to moderator
Thanks Sami.

Though even after going through the tutorials you pointed out I am still confused. As JAAS Authentication is talking something entirely different then how we know it in SCWCD. Well, I think it is time to give a hard look into Secuity's ab-initio.

Thanks again for your help!
 
  • Post Reply
  • Bookmark Topic Watch Topic
  • New Topic