Twin Cities Software Symposium
March 17 - 19, 2006 - Minneapolis, MN
View the event details here ».
J2EE Security @ Work: J2EE Meets JAAS
Have you wasted time writing lots of security-based code and ever wondered if there's a better way to add security to your application? Are you confused by declarative security? Have you read about JAAS (Java Authentication and Authorization Service) but wondered where it fits? Have you ever said, "Can I just see a working example"? If so, then this talk is for you.
If you're looking to restrict access to resources based on user roles, then J2EE declarative
security is for you. You'll learn how to protect web pages and business logic without adding
a single line of Java code to your business logic.
This presentation covers:
- J2EE Security Overview
- Web-based Security
- Protecting Access to Web-based Resources
- JAAS Overview
- Integrating JAAS with J2EE Security
- Configuring JAAS with JBoss and Tomcat
- Using Programmatic Security
- Integrating web-based security with business logic
We use Ant and XDoclet to deploy a simple J2EE-based web site using JSPs, Servlets, and EJBs.
We will secure the application in an iterative style. We use JBoss as the reference implementation,
but the core techniques shown here are applicable to any J2EE 1.4 application server.
Intended audience: Experienced Java/J2EE developers
About Tom Marrs
Tom Marrs is a Principal Architect with CIBER, where he specializes in Service-Oriented Architecture (SOA), JavaEE, Open Source, and AJAX/Web 2.0. He designs and implements mission-critical business applications using the latest technologies, leads technical teams, and trains and mentors other developers.
Tom is the co-author of JBoss At Work: A Practical Guide (O?Reilly, 10/2005), speaks regularly at software conferences, and reviews best-selling technical books for major publishers. An active participant in the local technical community, Tom founded the Denver Open Source Users Group (http://www.denveropensource.org) and has served as President of the Denver Java Users Group (http://www.denverjug.org).More About Tom »