Re: OffTopic : Authentication Mechanism

[Vikramjit Singh]

JAAS provides both server side and client side authentication. In client side: 1. you can use authentication server like kerberos 2. check the user from login like windows login   in server side, you can do by sending a digital certificate and verifying the client with it.   You might want to look at this http://www.javaworld.com/javaworld/jw-09-2002/jw-0913-jaas.html   -----Original Message----- From: Asadullah Khan [mailto:[EMAIL PROTECTED]] Sent: Monday, October 07, 2002 9:37 PM To: [EMAIL PROTECTED] Subject: Re: OffTopic : Authentication Mechanism Hi,     Thanks for the reply           I looked at JAAS, and I am of the impression, that it basically provides client side authentication mechanism, I am looking for some sort of server side mechanism.   please clarify whether I am right.   regards   Asad ----- Original Message ----- From: Sachin Pandey To: [EMAIL PROTECTED] Sent: Tuesday, October 08, 2002 9:39 AM Subject: Re: OffTopic : Authentication Mechanism Check out Java Authentication & Authorisation Service (JAAS). It will pretty much do all that you want.   Cheers Sachin Pandey NUIX Pty Ltd Level 8, 143 York Street, Sydney 2000 Phone: (02) 92839010 Fax: (02) 92839020   Disclaimer: This message is intended only for the named recipient. If you are not the intended recipient you are notified that disclosing,copying, distributing or taking any action in reliance on the contents of this information is strictly prohibited. ----- Original Message ----- From: Asadullah Khan To: [EMAIL PROTECTED] Sent: Tuesday, October 08, 2002 2:11 PM Subject: OffTopic : Authentication Mechanism       Hi all,         I am planning an Authentication Framework mechanism for my Servlets, JSPs and EJBs.   When ever a user access any of the resources, he has to be authenticated and checked for access roles.   That is I want to implement some sort of server side authentication mechanism.   The software developed will be integrated with the webserver or the application server.   can anybody give some insights, on how possibly can i go ahead and implement the same.     regards   Asad       Disclaimer: This e-mail message along with any attachments is intended only for the addressee and may contain confidential and privileged information of GTL Limited. If the reader of this message is not the intended recipient, you are notified that any dissemination, distribution or copy of this communication is strictly prohibited. If you have received this message by error, please notify us immediately, return the original mail to the sender and delete the message from your system.