[Java EE][Security] - Understanding Security Realms - 1. Main Thought
2016-01-01 23:23
691 查看
Securing Containers
In Java EE, the component containers are responsible for providing application security. A container provides two types of security: declarative and programmatic.
Container is responsible for security of components running inside. For example, the security model is running on application server layer, weblogic e.g., is not in application or compoent.
Realm, Users, Groups, and Roles
A realm is a security policy domain defined for a web or application server. It's a collection of users, who may or may not be assigned to a group.A user is an individual or application program identity that has been defined in web or application server.
A group is a set of authenticated users, classified by common traits, defined in web or application server.
A role is an abstract name for the permission to access a particular set of resources in an application.
Mapping Roles to Users and Groups
Logic Relationship
内容来自用户分享和网络整理,不保证内容的准确性,如有侵权内容,可联系管理员处理 
相关文章推荐
- (转)Java跨平台原理
- (转)JAVA语言为什么能跨平台?
- [Java]Java开发之路之汇总
- 如何在eclipse中实现参数传递给args[]中
- 求助,javax.persistence.Table.indexes()
- 集合框架基础知识点
- java字符串
- [译]GC专家系列1: 理解Java垃圾回收
- Java学习笔记·Servlet互相传递参数简单实例
- 基于java的任务中转接口
- java15.语言进阶------本地文件操作---遍历文件夹
- JAVA学习笔记(一)——开始
- Java项目打包部署war文件
- Java 和 C 的入门案例
- WebService(2)-XML系列之Java和Xml之间相互转换
- Java语言简介和开发环境搭建
- Mac下同时安装多个版本的JDK
- 文章标题
- mac x Yosemide(10.10) 下安装 jdk 1.7 (jdk 1.8) 要求Mac OS X10.7.3或更高版本解决
- Java事件处理