Developing Secure Application Clients
The two security paradigms implemented in WebLogic Server Version 6.0, JNDI security and JAAS, provide APIs for applications to access the security realm. For example, a security realm might contain access control information for a Java Message Service (JMS) destination. An application client requesting access to that JMS destination must make a number of API calls to authenticate itself to WebLogic. This section describes how to program to each security service API in order to access the underlying security realm data.
Why Two Security Services?
WebLogic Server implemented JNDI-based security (as did other vendors) before the J2EE standards for application-level authorization and authentication of users ...