Securing Web Applications
Medieval castles usually had high walls and gates that were guarded by soldiers who checked who was allowed entry. So the notions of authentication, authorization, and protection of what is valuable are not new to the Internet age after all! If your Java EE web application has any interesting data in it, then it probably needs securing.
There are many aspects of securing a web application: You may wish simply to ensure that you know who is interacting with resources in an application, or you may wish to use the identity of the user of your application to customize the interactions. You may wish to allow only ...