How to provide authentication/authorization in a simple JSP site?
posted 11 months ago
I am creating a basic 3 page JSP website. I need to have authentication/authorization for these pages(I am considering creating user and user_roles database tables). Will Spring Security be the right approach for this scenario? Or are there any quicker/simpler java solutions that I can use?
I am a bit new to web development and finding the security implementation aspect confusing.
The quickest - and most secure - method of providing A&A to a J(2)EE web application is to use the J2EE standard security framework. It's built into virtually all J2EE/JEE web application servers, even the minimalist ones like Tomcat and jetty.
Spring Security would be overkill here. For Tomcat, you'd use the JDBC Realm or one of its derivations.
An IDE is no substitute for an Intelligent Developer.