Logo Questions Linux Laravel Mysql Ubuntu Git Menu
HTML CSS JAVASCRIPT SQL PYTHON PHP BOOTSTRAP JAVA JQUERY R React Kotlin
 

Custom Security mechanism in Java EE 6/7 application

Tags:

security

java-ee-7

wildfly

jboss7.x

java-ee-6

I would like to create (implement by my own) authentication mechanism which will be plugged into my Java EE application.

As far as I know I have to implement LoginModule and connect this implementation with container mechanisms somehow. But the problem is that I don't know how to do it. Maybe You know where I can find sample code or tutorial about it?

In other words I would like to force container to call my classes whenever methods: authenticate, login, and logout are called.

Sample implementation: HttpServletRequest.login method will successfully authenticate only users with even numer of letters in login.

like image 582
pWoz Avatar asked Dec 06 '25 17:12

pWoz

1 Answers

I believe the container independent way of doing this is to use JASPIC (JSR 196). Unfortunately it doesn't appear simple, robust, or particularly well documented. Here is a reference: http://arjan-tijms.blogspot.com/2012/11/implementing-container-authentication.html.

like image 166
Ryan Avatar answered Dec 09 '25 20:12

Ryan
Sign in to Comment

Related questions

How is the randomly generated password salt in PHP 5.5's new password_hash function even useful?
Galois/Counter Mode (GCM/NoPadding) not used
Using ASP .NET forms authentication, if a fresh authentication cookie was stolen, would it be useable on another PC?

Donate For Us

If you love us? You can donate to us via Paypal or buy me a coffee so we can maintain and grow! Thank you!