Securing Jakarta EE Applications
Jakarta EE Security standardizes application security across all Jakarta EE-compliant application servers. The API includes standardized access to identity stores, which allow a uniform way of retrieving user credentials from a relational or Lightweight Directory Access Protocol (LDAP) database, as well as allowing us to implement access to custom identity stores. Jakarta EE Security includes authentication mechanism support, allowing us to authenticate a user in a standard way. Several authentication mechanisms are supported, such as the basic authentication supported by most browsers, client certificates, and HTML forms.
The following topics will be covered in this chapter:
- Identity stores
- Authentication mechanisms
Note
Example source code for this chapter can be found on GitHub at the following link: https://github.com/PacktPublishing/Jakarta-EE-Application-Development/tree/main/ch10_src.
