Presentation is loading. Please wait.

Presentation is loading. Please wait.

Enterprise Java v040918JBoss Security Setup1 Setting up Security in JBoss References: “Getting Started with JBoss, J2EE applications on the JBoss 3.2.x.

Published byAmbrose Hicks Modified over 8 years ago

Similar presentations

Presentation on theme: "Enterprise Java v040918JBoss Security Setup1 Setting up Security in JBoss References: “Getting Started with JBoss, J2EE applications on the JBoss 3.2.x."— Presentation transcript:

1 Enterprise Java v040918JBoss Security Setup1 Setting up Security in JBoss References: “Getting Started with JBoss, J2EE applications on the JBoss 3.2.x Server”, Luke Taylor and The JBoss Group. http://www.jboss.org/modules/html/docs/jbossj2ee.pdf

2 Enterprise Java v040918JBoss Security Setup2 Security Domains (a.k.a Realms) Implement security policy within the application server Based on JAAS –See JBoss JAAS How To http://prdownloads.sourceforge.net/jboss/jaashowto- 32x.zip?download Referenced by DataSources, Web Applications, EJBs, etc. Centralizes the management/implementation of security within the application server Security domain name mapped to login modules within $JBOSS_SERVER/conf/login-config.xml

3 Enterprise Java v040918JBoss Security Setup3 Example Reference in DataSource //based on $JBOSS_SERVER/deploy/hsqldb_ds.xml DefaultDS jdbc:hsqldb:${jboss.server.data.dir}${/}hypersonic${/}localDB org.hsqldb.jdbcDriver HsqlDbRealm

4 Enterprise Java v040918JBoss Security Setup4 Example Reference in Web Application //based on $JBOSS_SERVER/deploy/jmx-console/WEB-INF/jboss-web.xml java:/jaas/jmx-console

5 Enterprise Java v040918JBoss Security Setup5 Example Reference in EJB // $EJB/META-INF/jboss.xml java:/some-domain

6 Enterprise Java v040918JBoss Security Setup6 $JBOSS_SERVER/conf/login-config.xml <login-module code = "LoginModule Implementation Class" flag = “satisfaction requirement"> value … … used as security-domain name a Java implementation class states level of requirement for passing of policy to grant access module-specific options

7 Enterprise Java v040918JBoss Security Setup7 $JBOSS_SERVER/conf/login-config.xml application-policy –name defines security-domain –missing application-policies are mapped to “other” application- policy at bottom of login-config.xml file –authentication contains one or more login modules login module –specifies a JAAS implementation to authenticate user –flags »required: module must succeed for user to be authenticated

8 Enterprise Java v040918JBoss Security Setup8 Login Modules ConfiguredIdentityModule –sets the user identity to a constant value UsersRolesLoginModule –uses two property files to authenticate user and assign roles

9 Enterprise Java v040918JBoss Security Setup9 ConfiguredIdentityModule class: org.jboss.security.auth.spi. ConfiguredIdentityModule sets the user identity to a constant value –useful when accessing external resource with single account while application server manages individual accounts –principal sa –username sa –password

10 Enterprise Java v040918JBoss Security Setup10 UsersRolesLoginModule class: org.jboss.security.auth.spi.UsersRolesLoginModule uses two property files to authenticate user and assign roles –users.properties – contains user logins and plain text passwords user1=password1 user2=password2 –roles.properties – contains mapping of user login to roles user1=role1,role2 user2=role1 Files located in classpath –can be within EAR for applications Names can be customized with module-options – jmx-console-users.properties – jmx-console-roles.properties

Download ppt "Enterprise Java v040918JBoss Security Setup1 Setting up Security in JBoss References: “Getting Started with JBoss, J2EE applications on the JBoss 3.2.x."

Similar presentations

Towards Remote Policy Enforcement for Runtime Protection of Mobile Code Using Trusted Computing Xinwen Zhang Francesco Parisi-Presicce Ravi Sandhu www.list.gmu.edu.

Towards Remote Policy Enforcement for Runtime Protection of Mobile Code Using Trusted Computing Xinwen Zhang Francesco Parisi-Presicce Ravi Sandhu
METALOGIC s o f t w a r e © Metalogic Software Corporation 2004-2006 DACS Developer Overview DACS – the Distributed Access Control System.

METALOGIC s o f t w a r e © Metalogic Software Corporation DACS Developer Overview DACS – the Distributed Access Control System.
Forms Authority Database Store Username and Passwords: ASP.NET framework allows you to control access to pages, classes, or methods based on username and.

Forms Authority Database Store Username and Passwords: ASP.NET framework allows you to control access to pages, classes, or methods based on username and.
Java Security. Overview Hermetically Sealed vs. Networked Executable Content (Web Pages & email) Java Security on the Browser Java Security in the Enterprise.

Java Security. Overview Hermetically Sealed vs. Networked Executable Content (Web Pages & ) Java Security on the Browser Java Security in the Enterprise.
FIspace Security Components FIspace Security Components NetFutures 2015 FIspace project Javier Romero Negrín Javier Hitado Simarro ATOS Serdar Arslan KoçSistem.

FIspace Security Components FIspace Security Components NetFutures 2015 FIspace project Javier Romero Negrín Javier Hitado Simarro ATOS Serdar Arslan KoçSistem.
® IBM Software Group © 2006 IBM Corporation Securing Your Application With WebSphere Security You will need to develop Login procedures for your web applications.

® IBM Software Group © 2006 IBM Corporation Securing Your Application With WebSphere Security You will need to develop Login procedures for your web applications.
Understanding WebLogic Security

Understanding WebLogic Security
Securing web applications using Java EE Dr Jim Briggs 1.

Securing web applications using Java EE Dr Jim Briggs 1.
6/4/2015Page 1 Enterprise Service Bus (ESB) B. Ramamurthy.

6/4/2015Page 1 Enterprise Service Bus (ESB) B. Ramamurthy.
Database Security and Auditing: Protecting Data Integrity and Accessibility Chapter 5 Database Application Security Models.

Database Security and Auditing: Protecting Data Integrity and Accessibility Chapter 5 Database Application Security Models.
WEB2P security Java web application security Dr Jim Briggs.

WEB2P security Java web application security Dr Jim Briggs.
MITP 458 Application Layer Security By Techjocks.

MITP 458 Application Layer Security By Techjocks.
1 Build a Web Application on J2EE. 2 J2EE Scenario Client – Web Server – EIS Resources Client – Web Server – EIS Resources Client – Application Server.

1 Build a Web Application on J2EE. 2 J2EE Scenario Client – Web Server – EIS Resources Client – Web Server – EIS Resources Client – Application Server.
Teamcenter™ Security Services SSO

Teamcenter™ Security Services SSO
J2EE Security and Enterprise Java Beans Mrunal G. Dhond Department of Computing and Information Sciences Master of Science, Final Defense February 26,

J2EE Security and Enterprise Java Beans Mrunal G. Dhond Department of Computing and Information Sciences Master of Science, Final Defense February 26,
Chapter 5 Database Application Security Models

Chapter 5 Database Application Security Models
Version # Software Engineering Institute Carnegie Mellon University Pittsburgh, PA 15213-3890 Sponsored by the U.S. Department of Defense © 1999 by Carnegie.

Version # Software Engineering Institute Carnegie Mellon University Pittsburgh, PA Sponsored by the U.S. Department of Defense © 1999 by Carnegie.
TWSd Configuring Tivoli Workload Scheduler Security 1of3

TWSd Configuring Tivoli Workload Scheduler Security 1of3
Setting up Email in Outlook Express. Select “Tools” from the toolbar menu.

Setting up in Outlook Express. Select “Tools” from the toolbar menu.
Database Security and Auditing: Protecting Data Integrity and Accessibility Chapter 3 Administration of Users.

Database Security and Auditing: Protecting Data Integrity and Accessibility Chapter 3 Administration of Users.

Similar presentations

Ads by Google