Developing applications that use programmatic security

For some applications, declarative security is not sufficient to express the security model of the application. Use this topic to develop applications that use programmatic security.

About this task

IBM® WebSphere® Application Server provides security components that provide or collaborate with other services to provide authentication, authorization, delegation, and data protection. WebSphere Application Server also supports the security features that are described in the Java™ Platform, Enterprise Edition (Java EE) specification. An application goes through three stages before it is ready to run:
  • Development
  • Assembly
  • Deployment
Most of the security for an application is configured during the assembly stage. The security that is configured during the assembly stage is called declarative security because the security is declared or defined in the deployment descriptors. The declarative security is enforced by the security runtime. For some applications, declarative security is not sufficient to express the security model of the application. For these applications, you can use programmatic security.

Procedure

  1. Develop secure Web applications.
  2. Develop servlet filters for form login processing.
  3. Develop form login pages.
  4. Develop enterprise bean component applications.
  5. Develop with Java Authentication and Authorization Service to log in programmatically.
  6. Develop your own Java EE security mapping module. For more information, see Configuring programmatic logins for Java Authentication and Authorization Service.
  7. Develop custom user registries.
  8. Develop a custom interceptor for trust associations.



In this information ...


IBM Redbooks, demos, education, and more

(Index)

Use IBM Suggests to retrieve related content from ibm.com and beyond, identified for your convenience.

This feature requires Internet access.

Task topic    

Terms of Use | Feedback

Last updated: Oct 20, 2010 11:50:58 PM CDT
http://www14.software.ibm.com/webapp/wsbroker/redirect?version=compass&product=was-base-iseries&topic=tsecdesign
File name: tsec_design.html