This week's book giveaway is in the Kotlin forum.
We're giving away four copies of Kotlin in Action and have Dmitry Jemerov & Svetlana Isakova on-line!
See this thread for details.
Win a copy of Kotlin in Action this week in the Kotlin forum!
  • Post Reply Bookmark Topic Watch Topic
  • New Topic

how does ejb provede security?  RSS feed

 
amit daundkar
Ranch Hand
Posts: 47
  • Mark post as helpful
  • send pies
  • Quote
  • Report post to moderator
hello. i am new to ejb's. i dont understand how exactly ejb provide security to your application as people say?
i mean its a presentation of the bussiness logic,right? so where and how does the security feature comes in picture?
this may sound a dubl question but please reply.

thank you.
 
Jeanne Boyarsky
author & internet detective
Sheriff
Posts: 37228
519
Eclipse IDE Java VI Editor
  • Mark post as helpful
  • send pies
  • Quote
  • Report post to moderator
Amit,
EJB has a "deployment descriptor" which is an XML file. Among other things this XML file contains security roles for which roles can access an EJB - or specific methods on one. The EAR sets up what the roles mean - they can map to LDAP, specific users, etc.
 
amit daundkar
Ranch Hand
Posts: 47
  • Mark post as helpful
  • send pies
  • Quote
  • Report post to moderator
Jeanne Boyarsky wrote:Amit,
EJB has a "deployment descriptor" which is an XML file. Among other things this XML file contains security roles for which roles can access an EJB - or specific methods on one. The EAR sets up what the roles mean - they can map to LDAP, specific users, etc.


thank you jeanne.
but this roll setting we can do with web.xml also right? so where is the difference actually?
one again i know this must sound a dumb question but please reply.
 
Jeanne Boyarsky
author & internet detective
Sheriff
Posts: 37228
519
Eclipse IDE Java VI Editor
  • Mark post as helpful
  • send pies
  • Quote
  • Report post to moderator
Correct. Multiple layers of security make you even safer . EJB security is often more granular because one servlet call can access multiple EJBs.
 
  • Post Reply Bookmark Topic Watch Topic
  • New Topic
Boost this thread!