I need to choose a method for authenticating and authorizing users for
various roles within my application. What are my options with jBoss? I
know some containers such as WebLogic have techniques built in to aid a
developer.
Off the top of my head...
- wrap the whole site behind an apache webserver and authenticate at that
level. Not sure how i will communicate the results to my app however.
- use a servlet/ejb component to use jndi to grab the username and
password via basic http auth then compare to our ldap directory.
are there other ways that are better/more obvious to those who are
familiar with jboss? are there massive flaws with either of those two
above approaches?
specifics or general discussion both are much appreciated. I have some
hard choices to make in a day or two =)
--
gedanken
--
--------------------------------------------------------------
To subscribe: [EMAIL PROTECTED]
To unsubscribe: [EMAIL PROTECTED]
List Help?: [EMAIL PROTECTED]
