Adam Bien's Weblog

Friday Feb 01, 2013

Java EE Authentication and Authorization--A Free Article

Java EE authentication and authorization is more powerful and easier to use than expected. The recent Java Magazine article Secure Java EE Authentication covers Java EE security principles, dynamic and static authentication, as well as extension possibilities.

See also wisdomator--a companion, maven 3 sample application.

Thanks for reading! Feedback is, as always, highly appreciated!

Btw. there is also an Java Magazine iOS App.

See you at Java EE Workshops at MUC Airport!


NEW workshop: Microservices with Java EE 7 and Java 8, January 26th, 2015, Airport Munich

A book about rethinking Java EE Patterns

Comments:

Very good article. Thank you

The Only thing that is frustrating about JAAS is that roles are hard coded inside application code wich make it not suitable for a wide range of cases.

Posted by faissal on February 24, 2013 at 01:39 AM CET #

@faissal: in the article Adam describes how to programmatically handle the role authorization using ProgrammaticallySecuredWisdomStorage, no necessity to hard coding the role inside application...

Posted by tex on March 07, 2013 at 02:32 AM CET #

Many thanks Adam, very good article !

What if I want BASIC auth accessing a restful resource and FORM based auth accessing html pages ?

Must I break the project in 2 parts and handle 2 separate contexts where the first has BASIC auth (restful resource) and the second has FORM based auth (html pages) ?

Many thanks in advance...

Posted by tex on March 07, 2013 at 02:44 AM CET #

As java is a secure and poratable language so its static and dynamic authentication is very much neccessary.
for much information we can move onto Java Magazine iOS App also.

Posted by unit nexus on October 07, 2013 at 01:47 PM CEST #

Hi Adam

Thank you very much for the article and the example. That helped me a lot.
But now I have a question:
I would like to use an application specific realm (I use 3party lib, which I only have in the classpath of the application).

Is there a possiblity to do that?

Thank you in advance

Posted by Patrick on October 20, 2014 at 12:35 PM CEST #

Post a Comment:
  • HTML Syntax: NOT allowed
realworldpatterns.com
...the last 150 posts
...the last 10 comments
License