Summary
We started this chapter by discussing the basic concepts of security and the difference between authentication and authorization.
WildFly uses the PicketBox framework sitting on top of the Java Authentication and Authorization Service (JAAS), which secures all the Java EE technologies running in the application. The core section of the security subsystem is contained in the security-domain element that performs all the required authorization and authentication checks.
Then, we took a much closer look at the login modules, which are used to store the user credentials and their associated roles. In particular, you learned how to apply the file-based UserRoles login module and the Database login module. Each login module can be used by Enterprise ...
Become an O’Reilly member and get unlimited access to this title plus top books and audiobooks from O’Reilly and nearly 200 top publishers, thousands of courses curated by job role, 150+ live events each month,
and much more.
Read now
Unlock full access