Web application security components and settings

  • Web component security

    A Web module consists of servlets, JavaServer Pages (JSP) files, server-side utility classes, static Web content, which includes HTML, images, sound files, cascading style sheets (CSS), and client-side classes or applets. You can use development tools such as Rational® Application Developer to develop a Web module and enforce security at the method level of each Web resource.

  • Securing Web applications using an assembly tool

    You can use three types of Web login authentication mechanisms to configure a Web application: basic authentication, form-based authentication and client certificate-based authentication. Protect Web resources in a Web application by assigning security roles to those resources.

  • Security constraints in Web applications

    Security constraints determine how Web content is to be protected.

  • Security settings

    Use the administrative console to modify the security settings for all applications.

  • Assigning users and groups to roles

    This topic describes how to assign users and groups to roles if you are using WebSphere® Application Server authorization for Java Platform, Enterprise Edition (Java EE) roles.

  • Securing applications during assembly and deployment

    Several assembly tools exist that are graphical user interfaces for assembling enterprise or Java Platform, Enterprise Edition (Java EE) applications. You can use these tools to assemble an application and secure Enterprise JavaBeans (EJB) and Web modules in that application.

  • User profiles and authorities

    WebSphere Application Server uses two OS/400® user profiles by default, QEJB and QEJBSVR.

Task topic Task topic    

Terms and conditions for information centers | Feedback

Last updatedLast updated: Feb 5, 2014 9:49:51 PM CST
http://www14.software.ibm.com/webapp/wsbroker/redirect?version=compass&product=was-nd-mp&topic=container_webapp_security
File name: container_webapp_security.html