Chapter 8. Adding Security
Security is one of the most important aspects of any application, so we dedicated an entire chapter to this topic; even so, it would be presumptuous to say that this chapter covers all details regarding the subject; instead, the approach will be to bring some of the most common situations of security on Java EE and describe how to implement them through Oracle WebLogic features.
We will explore the security concerns associated with the EJB and Web containers of Java EE. In this context, you can specify the security constraints basically in two ways:
Declarative: Through the use of descriptors, annotations, and XML files
Programmatic: Hardcoded in an application component or Java class
It's also important to clarify some terminology and define what and how some of these terms will be used through this chapter. The most important ones are:
Authentication: Authentication is a word that derives from the word genuine or real in Greek, according to Wikipedia. In the Java...
