• home
• About
• Contact
• browse ↓

The Archives

• 05.27.07
  JBoss - Stacking Login Modules Java, Servers | (0)

  Sometimes no single login module is enough to meet our needs. Imagine the case of using an external LDAP server to provide the user authentication and a database server to provide the user authorization. A user would be in one repository or the other, and login should succeed if the user is found in either repository. JBoss allows you to specify multiple login modules for a single security domain. But simple module stacking doesn't resolve the problem on its own. For that, you need to use password stacking. Password stacking allows modules to skip the actual authentication and to provide supplemental roles. ...

  Tagged: Authentication, JAAS, JBoss, Security
  
• 02.04.07
  Secure JSP Taglibs Java, Open Source | (0)

  I've just created the project Secure JSP Taglibs at Google Code Project Hosting with the ambition to fill some gaps in the security of the presentation layer in a Java web application. For now it doesn't do too much, more features will be added in the future. This Taglib allows you to evaluate the nested body content of the tag to test if the user has the specified roles. This is equivalent to the isUserInRole() method, but you can evaluate multiple roles (comma separated) at the same time. Examples: [code lang="xml"] Show this content if the user has one of the specified ...

  Tagged: JSP, Security, Taglib
  

recent posts

• Stripes and jQuery: AJAX forms and HTTP Session Validation
• The Semantic Web and RDFa
• samaxesJS JavaScript Controls
• BIRT/Stripes example
• HTML 5 @media 2008
• .htaccess - gzip and cache your site for faster loading and bandwidth saving
• Alfresco - Web Content Management