CHAPTER6Identification and Authentication for Web Applications

In this chapter, you’ll look at two ways of enabling database security through identity propagation. This chapter outlines the necessary steps for linking application security to database security. In the first half of the chapter, you’ll analyze a J2EE application that uses the Oracle Application Server 10g, single sign-on, proxy authentication, and database Enterprise Users. In the second half of the chapter, you’ll look at setting up database security when proxy authentication isn’t used.

Passing information about the user to the database is the most important process in designing and deploying secure database applications. If handled correctly, the result is a well-defined, easily ...

Get Effective Oracle Database 10g Security by Design now with the O’Reilly learning platform.

O’Reilly members experience live online training, plus books, videos, and digital content from nearly 200 publishers.