• Post Reply Bookmark Topic Watch Topic
  • New Topic
programming forums Java Mobile Certification Databases Caching Books Engineering Micro Controllers OS Languages Paradigms IDEs Build Tools Frameworks Application Servers Open Source This Site Careers Other all forums
this forum made possible by our volunteer staff, including ...
Marshals:
  • Campbell Ritchie
  • Bear Bibeault
  • Ron McLeod
  • Jeanne Boyarsky
  • Paul Clapham
Sheriffs:
  • Tim Cooke
  • Liutauras Vilda
  • Junilu Lacar
Saloon Keepers:
  • Tim Moores
  • Stephan van Hulst
  • Tim Holloway
  • fred rosenberger
  • salvin francis
Bartenders:
  • Piet Souris
  • Frits Walraven
  • Carey Brown

how does ejb provede security?

 
Ranch Hand
Posts: 47
  • Mark post as helpful
  • send pies
  • Quote
  • Report post to moderator
hello. i am new to ejb's. i dont understand how exactly ejb provide security to your application as people say?
i mean its a presentation of the bussiness logic,right? so where and how does the security feature comes in picture?
this may sound a dubl question but please reply.

thank you.
 
author & internet detective
Posts: 40035
809
Eclipse IDE VI Editor Java
  • Mark post as helpful
  • send pies
  • Quote
  • Report post to moderator
Amit,
EJB has a "deployment descriptor" which is an XML file. Among other things this XML file contains security roles for which roles can access an EJB - or specific methods on one. The EAR sets up what the roles mean - they can map to LDAP, specific users, etc.
 
amit daundkar
Ranch Hand
Posts: 47
  • Mark post as helpful
  • send pies
  • Quote
  • Report post to moderator

Jeanne Boyarsky wrote:Amit,
EJB has a "deployment descriptor" which is an XML file. Among other things this XML file contains security roles for which roles can access an EJB - or specific methods on one. The EAR sets up what the roles mean - they can map to LDAP, specific users, etc.



thank you jeanne.
but this roll setting we can do with web.xml also right? so where is the difference actually?
one again i know this must sound a dumb question but please reply.
 
Jeanne Boyarsky
author & internet detective
Posts: 40035
809
Eclipse IDE VI Editor Java
  • Mark post as helpful
  • send pies
  • Quote
  • Report post to moderator
Correct. Multiple layers of security make you even safer . EJB security is often more granular because one servlet call can access multiple EJBs.
 
Consider Paul's rocket mass heater.
    Bookmark Topic Watch Topic
  • New Topic