Summary
In this chapter, we covered the Jakarta Security API. We discussed the following topics in this chapter:
- How to access different types of identity stores to retrieve user credentials, such as relational databases or LDAP databases
- How the Security API provides the ability to integrate with custom identity stores, in case we need to access one not directly supported, and how to use different authentication mechanisms to allow access to our secured Jakarta EE applications
- How to implement the basic authentication mechanism provided by all web browsers
- How to implement a form-based authentication mechanism, where we provide custom HTML pages used for authentication
- How to use custom form authentication, so that we can integrate our application security with a web framework such as Jakarta Faces
Using the security features provided by Jakarta EE allows us to develop secure applications. The API is flexible enough to allow integration with arbitrary...