Protecting WebLogic Server Applications

In this section, we start with how to secure applications using the default WebLogic Server security providers. We see how these providers work with the J2EE security model and demonstrate how to manage and configure these providers.

Selecting a Realm

To start off, we will use the default realm named myrealm. This realm is configured with WebLogic Server–supplied security providers. When a new domain is created, myrealm is the only realm in that domain and it's the default realm for the new domain as well, as shown in Figure 28.1. Applications running in this domain use myrealm for their security unless another realm is created and set as the default.

Figure 28.1. A domain starts with myrealm as the default ...

Get BEA WebLogic Server™ 8.1 Unleashed now with the O’Reilly learning platform.

O’Reilly members experience live online training, plus books, videos, and digital content from nearly 200 publishers.