Thursday, April 21, 2011

WebLogic security

Excellent JAAS tutorial here

An overall presentation of JCA there

Here you find an overview of all JAAS classes

A Subject can have many Principal

a LoginContext lives inside a Configuration

The Configuration contains a stack of LoginModule, and the Credentials are authenticated in cascade across this stack.

A Policy is ensured by a Provider, and its role is to grant a Permission

..; to be continued....

No comments: