Chapter 16. Application integration 369
Allow only authorized users to access any given Web application, regardless
of the source (entry point).
The idea of segregation for external and internal users creates a baseline
infrastructure for enforcing different access control enforcement points for
those entry channels, because there may be cases where you need to
enforce users to only use one specific channel (that is, internal users should
access the internal application server only).
Control access to the application pages based on the user’s group
membership.
This can be accomplished either by application coding (that is, programmatic)
or by using WebSEAL (that is, independent). The ideal approach is to use
WebSEAL, keeping the access control ...