Things in mind while designing a secure, standard login system in J2EE Help with some code snippets would be good.
Thanks in Advance
posted 3 years ago
The most important thing is: don't do it. Getting security right is hard, and chances are you would end up with an insecure system if you implement one yourself. Use whatever facilities are provided by the container (JEE or servlet) as much as possible, and if you need functionalities beyond those, check out existing solutions such as Apache Shiro.