Chapter 12. The Java Authentication and Authorization Service

The Java Authentication and Authorization Service (JAAS) provides a means for building Java applications that extend the standard Java 2 security model. JAAS augments the standard Java security model with the capability to authenticate subjects so that applications can be built independently of the underlying authentication mechanisms employed. JAAS also provides a means for authorizing subjects based on their authenticated identities.

In this chapter, you will learn

  • The basic architecture of JAAS

  • The representation of subjects in JAAS

  • The means for authenticating subjects using JAAS

  • The means for authorizing access to resources by subjects using JAAS

JAAS Overview

The JAAS serves as a standard ...

Get Java Security Handbook now with the O’Reilly learning platform.

O’Reilly members experience live online training, plus books, videos, and digital content from nearly 200 publishers.