A RESTful and secure EJB component
Java EE 6 not only allows us to package EJBs into their own module, but also to deploy our Beans directly into the WAR module that will use them. We will see how to secure both of these scenarios.
Bean packaged into the WAR module
Often, we don't need to
package Enterprise Beans into a separated module; we can collocate them inside the same WAR client module and simplify our application architecture. Now, we will develop a simple EJB that will be injected into the existing MyProtectedServlet
class. We will also see the security context to be passed and the configuration we need to do.
Let's start simple; we can code this really simple Stateless
Bean with no interface view, as shown in the following code snippet:
package net.lucamasini.security; import javax.ejb.Stateless; @Stateless public class NoInterfaceBeanInWarModule { public String echo(String input) { return "$"+input+"$"; } }
This Java file must be in the same folder containing our...