O'Reilly logo

J2EE™ Applications and BEA™ WebLogic Server™ by Sandra L. Emerson, Rob Woollen, Michael Girdley

Stay ahead with the world's most comprehensive technology and business learning platform.

With Safari, you learn the way you learn best. Get unlimited access to videos, live online training, learning paths, books, tutorials, and more.

Start Free Trial

No credit card required

Developing Browser-Based Authentication

To change the login method to use browser-based authentication, simply modify the deployment descriptor, web.xml. Browser-based authentication is defined completely in the deployment descriptor and nowhere else.

Specifying Deployment Descriptor Web Authorization Methods

The <login-config> XML tag is used to encapsulate a new authorization method (<auth-method>). There are three options for the <auth-method>:

  • BASIC, in which the Web browser displays a user name/password dialog box. This user name and password is authenticated against the realm.

  • FORM, which is the HTML form-based authentication used in the form-based example.

  • CLIENT-CERT, which requires SSL and a client-side certificate. This option is discussed ...

With Safari, you learn the way you learn best. Get unlimited access to videos, live online training, learning paths, books, interactive tutorials, and more.

Start Free Trial

No credit card required