SQL Zone is brought to you in partnership with:

Reza Rahman is a former independent consultant, now Java EE/GlassFish evangelist at Oracle. He is the author of the popular book EJB 3 in Action. Reza is a frequent speaker at Java User Groups and conferences worldwide. Reza has been a member of the Java EE, EJB and JMS expert groups. He implemented the EJB container for the Resin open source Java EE application server. All views voiced are my own, not necessarily Oracle's. Reza is a DZone MVB and is not an employee of DZone and has posted 196 posts at DZone. You can read more from them at their website. View Full User Profile

JDBC/Form-Based Authentication in GlassFish

  • submit to reddit

 Security, specifically authentication and authorization, is one of the least well understood parts of Java EE. This is despite the fact that most Java EE application servers, including GlassFish have extremely robust infrastructures for securing Java EE applications. This is why it is no surprise that one of the most popular entries on celebrated Java EE advocate and German author Markus Eisele's blog is about securing GlassFish Java EE applications. I thought it is useful to highlight that entry here.

In the entry, Markus explains step-by-step how to setup the database with security data, setting up the database in GlassFish, creating the secure application in NetBeans, setting up the GlassFish security realm, write the secure application and configure application security.

Published at DZone with permission of Reza Rahman, author and DZone MVB. (source)

(Note: Opinions expressed in this article and its replies are the opinions of their respective authors and not those of DZone, Inc.)