 |
 | Home | Contact Us | FAQ | Search & Site Map | Link to Us |
 | Sign In | Join | Other 45 Sites in Network |
Java Forum / Security / November 2003Web Application Security with JAAS
Hi We are working on an Office Automation project, it is a Java web-based application developed using Struts MVC framework. Is JAAS a suitable solution for applying security on such systems? I don't think there would be any need for other types of authentication but user name and password checking, isn't JAAS too complicated for such thing? And what about the authorization? I found only URL permission checking solutions, but they are not suitable, clients have access to links but they get permission errors clicking them. It would be much better to not have access to those links and they are invisible for that user, is there any solution or sample by JAAS for such task? In this system we want let Admin grant users dynamicaly and easily, is JAAS a good solution for such a thing? Regards, Amir Pashazadeh I'm not sure that a particular authentication interface like JAAS has much to do with you problem (and yes, you can use it, it seems to work, and it seems to work overall as documented, which is not so common in Java :) If I'm reading your properly, your aim is not to grant access to a tier or a data source, but to subsets of the same data source. You did not explain if you want to grant access by user groups or by users. In both cases you need to store extra access data in each record. IMHO... Free MagazinesGet these publications absolutely FREE for up to 12 months. There are no hidden fees and no obligation. Simply choose a title, complete the application form and submit it. Read more ...
|
Reply to this Message
|
 Sign In
 Join
 My Latest Posts My Monitored Threads My Blog My Photo Gallery My Profile My Homepage Start New Thread Enable EMail Alerts Rate this Thread
|
©2008 Advenet LLC Privacy Policy - Terms of Use
This website includes both content owned or controlled by Advenet as well as content owned or controlled by third parties.