book

JBoss AS 5 Development

Name: JBoss AS 5 Development
Author: Francesco Marchioni
ISBN: 9781847196828

by Francesco Marchioni

December 2009

Intermediate to advanced

416 pages

8h 38m

English

Packt Publishing

Read now

Unlock full access

JBoss AS 5 Development
JBoss AS 5 Development
Credits
About the Author
About the Reviewers
Preface
What this book covers
Who this book is for
Conventions
Reader feedback
Customer support
ErrataPiracyQuestions

1. Installing Core Components
PrologueWhat you will get in this bookJBoss big bang
Introduction
Installing the Java environment
Installing JBoss AS 5
Starting up JBoss ASStopping JBossStopping JBoss on a remote machine
Installing Eclipse
Plugins: The heart of Eclipse
Installing JBoss Tools pluginsInstalling JBoss Tools plugins manuallyConnecting Eclipse with JBoss
Summary
2. What's New in JBoss AS 5?
Application server featuresThe core modules of JBoss AS 5Cutting edge EJB containerThe new messaging providerRock solid transaction managerEnhanced web containerJBoss Web Services 3.0Improved clustering supportThe application server structure
The next generation application server
From JMX to the MicrocontainerThe new library configurationJBoss AS 5 server configurationsThe "standard" configurationThe "web" configurationThe former server configurations
Creating a custom server configuration
The starting point: JBoss AS service mapCustom configuration sample: Adding JMS to the web configurationJBoss virtual file system
Summary
3. Customizing JBoss AS Services
How to monitor JBoss AS servicesThe JMX consoleAn example: Using the JMX console to display the JNDI treeThe admin consoleThe twiddle utility
JBoss AS thread pool
Application server thread pool anatomyHow many threads for your applications?Analyze what your threads are doing
Configuring logging services
AppendersConsole file appenderChanging the configuration at runtimeFile appendersRolling the file by sizeOther appendersLayout of logsLogging categoriesConfiguring your own loggerManaging logs through JMX agents
Configuring the connection to the database
Configuring a datasource in JBoss ASAdditional datasource propertiesSetting up a new datasourceGathering connection pool statisticsManaging datasources from the admin consoleUsing statistics to tune the connection poolDeploying datasources at application levelHigh availability datasourcesClustered RDBMSConnecting from a remote client
Configuring the transaction service
Preserving data integrityGlobal and local transactionsConfiguring JBoss transactionsMonitoring transactions
Summary
4. Developing EJB 3 Session Beans
Java EE made easier
Developing Enterprise JavaBeans
Developing Session BeansStateless Session BeansLife cycle of a Stateless Session BeanSetting up a simple exampleDeploying your applicationCreating a test clientAdding interceptors to your BeanStateful Session BeansStateful Bean life cycleDeveloping a simple Stateful Session Bean
Configuring the EJB container
Configuring Stateless Session Bean pool sizeSpecializing the configurationConfiguring the Stateful Session Bean cacheHow to disable Stateful Bean passivation
Summary
5. Developing JPA Entities
Data persistence meets a standardWorking with JPACreating a sample applicationSetting up the databaseRolling the EJB projectConfiguring the database connectionGenerating entitiesReverse engineering aftermathConfiguring persistenceCreating a Session Bean clientCreating a test client for our AppStore
Summary
6. Creating a Web Application
Developing web layoutInstalling JSF on JBoss ASSetting up navigation rulesAdding a JSF managed beanSetting up the viewAssembling and deploying the applicationRunning the store
Configuring JBoss Web Server
Customizing connectorsThe new Apache Portable Runtime connectorInstalling the APR connectorConfiguring contextsConfiguring virtual hostsConfiguring HTTP logsTuning adviceDisable DNS lookupChoose the right HTTP connectorSet the correct size for your thread poolMonitoring your thread pool
Summary
7. Developing Applications with JBoss Messaging Service
Short introduction to JMSThe building blocks of JMS
The new JBoss Messaging system
Configuring connection factoriesConfiguring JMS destinationsInspecting destination attributesAdvanced message configurationScheduled delivery
Developing JMS applications
Message-driven beansConfiguring message-driven beansCreating a sample applicationCreating MDB singletonsMessage-driven POJOs
Advanced JBoss Messaging
JBoss Messaging bridgeAdding a remote JMS providerConfiguring the persistence serviceSecuring destinationsMDB access control
Summary
8. Developing Applications with JBoss and Hibernate
Introducing HibernateCreating a Hibernate applicationSetting up the database schemaA new Eclipse projectReversing your schema into Java classesAdding Hibernate configuration to your projectAdding a web client to your projectPackaging and deploying the applicationUsing the wizard to generate EJB 3Hibernate and EJB: Friends or opponents?Using Hibernate with EJBInjecting key Hibernate objects
Summary
9. Managing JBoss AS
Introducing Java Management Extension
Developing MBeans
A simple MBeanTesting your MBean from the JMX consoleTesting your application programmaticallyMBeans dependencySending MBeans notificationsReceiving heartbeat notificationsSending your own notifications
Service POJOs
Creating a web test clientExposing your service as an EJBService POJO dependency
JBoss AS Administration Console
Managing applicationsDeploying/undeploying applicationsUpdating an applicationStarting/stopping/restarting an applicationAdministering resourcesAdding a new resourceManaging resourcesMetrics
Summary
10. Developing Applications with JBoss Web Services
Web Service conceptsStrategies for building up Web ServicesJBoss Web Services stackA brief look at the JAX WS architecture
Coding Web Services with JBossWS
Developing a POJO Web ServiceInspecting the Web Service from the consoleUsing JBossWS toolsExternal Web Service clientsExposing EJB as Web ServicesHandling exceptions in Web ServicesGenerating a test clientInjecting Web ServicesWeb Service Handler chains
Summary
11. Clustering JBoss AS
Cluster basics
Introducing JBoss AS cluster
JBoss AS clustering architectureSmart proxiesExternal load balancer
JBoss AS 5 cluster configuration
Starting JBoss AS in cluster modeRunning cluster nodes on separate machinesRunning cluster nodes on the same machineRunning multiple clusters on the same network
JBoss AS clustered services
JBoss Cache (JBC)Cache modesCache configurationConfiguring HTTP cache managementConfiguring EJB 3.0 Stateful Session Bean cacheConfiguring entity cachingJBoss cache and concurrencyThe HAPartition serviceExploring HA singletonsThe HA-JNDI serviceAccessing HA-JNDIHA-JNDI configuration
Clustering web applications
Configuring HTTP replicationHttpSession passivation/activationConfiguring load balancing
JMS clustering
Summary
12. Developing a Clustered Application
Clustering Stateless Session Beans
Clustering Stateful Session Beans
Deploying a clustered SFSBTesting the clustered SFSBProgrammatic replication of the session
Clustering entities
Revisiting the AppStore exampleInside the second-level cacheEvicting entities from the cacheGeneral guidelines for a good cache
Clustering web applications
Testing HTTP session replication
Summary
13. JBoss AS Security
Approaching Java Security APIThe JAAS security model
Introducing JBossSX
Securing the JMX consoleDynamic login configurationStacked login configurationLogging and auditingSecuring the transport layerEnabling the Secure Socket Layer on JBoss ASCertificate management toolsSecuring the HTTP communication with a self-signed certificateSecuring the HTTP communication with a certificate signed by a CASecuring the RMI transportAdding a client truststore
Summary
14. Securing JBoss AS Applications
Securing the AppStore applicationHTTP role authenticationEncrypting passwordsEJB role authorizationJava EE programmatic securityWriting secure Java SE clients
Securing applications at transport level
Running the AppStore with HTTPSSecuring the RMI-IIOP transport: SSL BlackJack
Securing Web Services
Web Services authorizationWeb Services encryptionClient and server configuration files
Encrypting the POJOWebService
Securing the Web ServiceSecuring the clientRunning the exampleSigning SOAP messagesDebugging SOAP messages
Summary

Content preview from JBoss AS 5 Development

Securing applications at transport level

Authentication and authorization is only one aspect of security. Any application that communicates through a clear text channel with its customers is potentially unsafe. For example, it's not only possible to capture a session cookie reading the HTTP header, but also possible to change a financial transaction by hacking the application context.

In the following sections, we will describe how to secure an application at transport level, starting from the HTTP protocol and then moving to the RMI transport layer.

Running the AppStore with HTTPS

Your AppStore application communicates with its client through clear text HTTP protocol. In order to take advantage of secure connections, you have to configure your ...

Become an O’Reilly member and get unlimited access to this title plus top books and audiobooks from O’Reilly and nearly 200 top publishers, thousands of courses curated by job role, 150+ live events each month,
and much more.

Read now

Unlock full access

More than 5,000 organizations count on O’Reilly

O’Reilly covers everything we've got, with content to help us build a world-class technology community, upgrade the capabilities and competencies of our teams, and improve overall team performance as well as their engagement.

Julian F.

Head of Cybersecurity

I wanted to learn C and C++, but it didn't click for me until I picked up an O'Reilly book. When I went on the O’Reilly platform, I was astonished to find all the books there, plus live events and sandboxes so you could play around with the technology.

Addison B.

Field Engineer

I’ve been on the O’Reilly platform for more than eight years. I use a couple of learning platforms, but I'm on O'Reilly more than anybody else. When you're there, you start learning. I'm never disappointed.

Amir M.

Data Platform Tech Lead

I'm always learning. So when I got on to O'Reilly, I was like a kid in a candy store. There are playlists. There are answers. There's on-demand training. It's worth its weight in gold, in terms of what it allows me to do.

Mark W.

Embedded Software Engineer

Publisher Resources

ISBN: 9781847196828You can download the example code files for all Packt books you have purchased from your account at http://www.PacktPub.com.

Cloud Computing

Data Engineering

Data Science

AI & ML

Programming Languages

Software Architecture

IT/Ops

Security

Design

Business

Soft Skills

JBoss AS 5 Development

by Francesco Marchioni

Securing applications at transport level

Running the AppStore with HTTPS

Become an O’Reilly member and get unlimited access to this title plus top books and audiobooks from O’Reilly and nearly 200 top publishers, thousands of courses curated by job role, 150+ live events each month,
and much more.