Getting Started with WebSphere Application Server

More documents

Recommendations

Info

152 Getting Started with WebSphere Application Server Community Edition props.put("java.naming.factory.initial", "org.openejb.client.RemoteInitialContextFactory"); props.put(Context.SECURITY_PRINCIPAL, "andy"); props.put(Context.SECURITY_CREDENTIALS, "aaa"); props.put("openejb.authentication.realmName","helloRealm"); InitialContext ctx = new InitialContext(props); Listing 8.10 - Initial properties 8.3.3 Implementing Web security This section describes how to implement declarative and programmatic Web security. 8.3.3.1 Declarative security Declarative security restricts access to URLs, such as servlets, JSPs, or even HTTP files or images served by the Web container through deployment descriptors (web.xml) of the Web application. Listing 8.11 provides an example where you insert in web.xml the roles that will access the Web project. super_user Listing 8.11 - Declarative security referencing roles in web.xml Listing 8.12 provides an example where you define role constraints. In the example, the super user can access the resources where the URI matches the pattern /jsp/* with the GET and POST methods. Listing 8.13 shows the code needed to configure the authentication method. Protected Resource /jsp/* GET POST super_user Listing 8.12 - Security constraint BASIC helloRealm Listing 8.13 - Configuring the authentication method
Chapter 8 – Security 153 In the above example, the realm helloRealm is used. Ensure you add the following line to the deployment plan (geronimo-web.xml): helloRealm The BASIC authentication mechanism is the default option for requesting authentication information from a browser-based client. When a user tries to access the protected pages using a browser, the browser will pop-up a dialog box to request you input the id and password. The authentication information is encrypted using base64 encoding. Alternatively, the FORM authentication mechanism as illustrated in Listing 8.14 is also commonly used. Using this mechanism, an application developer provides a customized logon page, and you request the authentication information this way. This is illustrated in Listing 8.15 showing the contents of the file login.jsp. FORM /login.jsp /loginerror.jsp Listing 8.14 - “FORM” authentication method Username: Password: Listing 8.15 - The login.jsp There are also Client_CERT and Digest methods provided, where Client_CERT is using digital certificates passed over an SSL connection, and Digest is similar to BASIC, but the password is transmitted using a custom encryption mechanism. 8.3.3.2 Programmatic security Using programmatic security in JSPs and servlets is very similar to EJB programmatic security described in an earlier section. Listing 8.16 provides an example. System.out.println(request.getUserPrincipal().getName()); if (request.isUserInRole("super_user")){ //add any logic that is super user specific. } Listing 8.16 - Programmatic access control 8.3.3.3 Testing Web security from a browser
Page 3 and 4:
G E T T I N G S T A R T E D W I T H
Page 5 and 6:
Notices This information was develo
Page 7 and 8:
Trademarks IBM, the IBM logo, and i
Page 9 and 10:
3.8 Exercises .....................
Page 11 and 12:
9.3.2 Changing port numbers .......
Page 13 and 14:
13 Preface Keeping your skills curr
Page 15:
The DB2 on Campus book series 15
Page 18 and 19:
18 Getting Started with WebSphere A
Page 21 and 22:
1 Chapter 1 - Introduction to WebSp
Page 23 and 24:
Introduction to WebSphere Applicati
Page 25 and 26:
Page 27 and 28:
Page 29 and 30:
Page 31:
Page 34 and 35:
Page 36 and 37:
Page 38 and 39:
Page 40 and 41:
Page 42 and 43:
Page 44 and 45:
Page 47 and 48:
3 Chapter 3 - Development with Comm
Page 49 and 50:
Chapter 3 - Development with Commun
Page 51 and 52:
Page 53 and 54:
Page 55 and 56:
Page 57 and 58:
Page 59 and 60:
Page 61 and 62:
Page 63 and 64:
Page 65 and 66:
4 Chapter 4 - Working with database
Page 67 and 68:
Chapter 4 - Working with databases
Page 69 and 70:
Page 71 and 72:
Page 73 and 74:
Page 75 and 76:
Page 77 and 78:
Page 79 and 80:
Page 81 and 82:
Page 83 and 84:
Page 85 and 86:
Page 87 and 88:
Page 89 and 90:
5 Chapter 5 - Enterprise Java Beans
Page 91 and 92:
1. Define local and remote interfac
Page 93 and 94:
Chapter 5 - Enterprise Java Beans 9
Page 95 and 96:
Page 97 and 98:
Note: Chapter 5 - Enterprise Java B
Page 99 and 100:
Page 101 and 102: Chapter 5 - Enterprise Java Beans 1
Page 109 and 110: 6 Chapter 6 - Messaging Messaging i
Page 111 and 112: Chapter 6 - Messaging 111 3. Messag
Page 113 and 114: Chapter 6 - Messaging 113 2. Get JM
Page 115 and 116: Chapter 6 - Messaging 115 Figure 6.
Page 117 and 118: Chapter 6 - Messaging 117 Figure 6.
Page 119 and 120: Chapter 6 - Messaging 119 For examp
Page 121 and 122: textMessage.getText()); } catch (JM
Page 123 and 124: Chapter 6 - Messaging 123 3. Copy t
Page 125: Chapter 6 - Messaging 125 D. Messag
Page 128 and 129: 128 Getting Started with WebSphere
Page 161: PART III - ADMINISTERING COMMUNITY
Page 181 and 182: 10 Chapter 10 - Tuning a Community
Page 183 and 184: Chapter 10 - Tuning a Community Edi
Page 191 and 192: 10.4.2 Operating system tuning Chap
Page 193: Chapter 10 - Tuning a Community Edi
Page 202 and 203:
202 Getting Started with WebSphere
Page 204 and 205:
Page 206 and 207:
Page 208 and 209:
Page 211 and 212:
A Appendix A - Solutions to review
Page 213 and 214:
Appendix A - Solutions to review qu
Page 215 and 216:
Page 217 and 218:
Page 219 and 220:
B Appendix B - Up and running with
Page 221 and 222:
Appendix B - Up and running with DB
Page 223 and 224:
4. The following is performed by de
Page 225 and 226:
Page 227 and 228:
Page 229 and 230:
Page 231 and 232:
Page 233 and 234:
Page 235:
C Appendix C - Using the sample cod
Page 238 and 239:
Page 240:
show all

Getting Started with WebSphere Application Server

Create successful ePaper yourself

Delete template?

Save as template?