Originally posted by karthik Guru:
But I found that J2EE security doesn't integrate with JAAS either.
At the time we started to develop our application, JAAS wasn't mandatory for app servers, so we used a proprietary interface. AFAIK, all major vendors of J2E servers had one interface or another to connect to a custom security repository.
Anyway, J2EE security and JAAS seem to go together rather well:
JAAS LoginModule in the J2EE Application