Relieves the programmer to write security related code (though they can if they want to).
Also known as declarative security (for authentication and authorization).
Container Managed SecurityĬontainer managed security provides enforcing and implementing security policies on the web server. Tomcat uses realms to implement container-managed security and enforce specific security policies. This has the following information: username, password and the roles which are assigned to the users.īoth of the authentication and authorization make up the security policy of a server. A realm is a repository of user information it is an abstraction of the data store – text file, JDBC database or a JNDI resource.
0 kommentar(er)
