Professional Documents
Culture Documents
Java Enterprise
Legacy Infrastructure
Browser
Java EE Security
Roles shield
Web Resources, EJB Methods, Message Destinations.
Java Principal
Access
Java EE Policies
AUTHENTICATION TYPES
Important Terms in Java EE Security Realm Groups Users Principal Role The application Server will provide the facility to create realm, users and groups
Roles are created in the application context like sun-web.xml with predefined tags
The resources required to be protected are listed in web.xml with role and group
BASIC AUTHENTICATION
SSL AUTHENTICATION
SSL AUTHENTICATION
THE SERVER IS AUTHENTICATED BY THE CLIENT USING DIGITAL CERTIFICATE CERTIFIED BY A CERTIFICATION AUTHORITY FIRST STEP IS TO GENERATE A DIGITAL CERTIFICATE USING PUBLIC KEY PRIVATE KEY PAIR
Continued
4. Enter all the credentials required , like name, city , company etc 5. Generate a certificate file keytool -export -alias s1as -file serverbcert.cer -keystore keystore.jks
6. copy the file into trusted keystore cacerts.jks keytool -import -alias serverb.mycompany.com -file serverb-cert.cer 30 -keystore cacerts.jks
eg. https://localhost:8181/ConverterApp
This will show a certificate from Server which a client can reject or accept