You are Here: Home >Jsp>Tomcat Tutorial >Introduction To Web Security

Introduction To Web Security

text zoom
Previous: Using Datasource In Application Tomcat Security :Next

Introduction To Web Security


Security is defined as the condition of being protected against danger or loss. The security is very important in any web application as the web applications are mostly exposed to all the people in the world. The levels of security can be



  • Transport Level security using HTTPS.

  • Authentication and Authorization

  • Role Based Access Control

  • Container-managed Security

  • Application-managed Security.


Application Managed Vs Container Managed Security


















Container Managed


Application Managed



  • Authentication and Authorization are specified in web.xml.

  • It uses multiple authentication schemes, such as Password Authentication Form-based Authentication Client side Digital Certificates etc..

  • Redirects are handled automatically.

  • User data can be provided by a variety of stores xml file or flat files. In tomcat the Data is provided in TOMCAT_HOME/conf/tomcat-users.xml

  • Extending RequestProcessor (in previous versions)or AuthorizeAction (After 1.3).

  • Cookies

  • Using Servlet Filters.

  • Using SSLEXT with Struts to enable HTTPS.
                    
Previous: Using Datasource In Application Tomcat Security:Next
Give feedback and win a prize.

Jsp Source Code

...more

New Jsp Resources

...more

Copyright © 2012 VisualBuilder. All rights reserved