IBM WebSphere 应用服务器引入了新的高度可定制化的认证框架,该框架基于 Java 认证与授权服务 (JAAS) 并进行了扩展,以更好地支持复杂的认证需求。新框架包括用户主体修改接口、增强的信任关联拦截器 (TAI) 支持、详细的登录流程文档等特性。
In the past, IBM WebSphere Application Server had a rigid authentication model that made it challenging to support complex or unusual requirements. This situation was recently addressed with a new, highly customizable authentication framework based upon Java Authentication and Authorization Service (JAAS), extended with features that specifically address the requirements of managing user authenticity and privileges in a distributed application server environment.
This new framework defined for JAAS support in WebSphere Application Server includes:
* well-defined interfaces for altering the user subject
* enhanced Trusted Association Interceptor (TAI) support
* explicit documentation for the WebSphere Application Server login process
* the ability to assert complete user credentials to WebSphere Application Server (including group information)
* replication of subjects in a distributed environment
plus a number of beneficial extensions to the security programming model.
This article will describe these new features in detail. The next sections provide some background on the fundamentals of the WebSphere Application Server authentication process and an overview of JAAS, then the remainder of the article will describe the most important aspects of these features as they relate to authentication.
For more details, please visit the url below:
[url]http://www.ibm.com/developerworks/websphere/techjournal/0508_benantar/0508_benantar.html[/url]
This new framework defined for JAAS support in WebSphere Application Server includes:
* well-defined interfaces for altering the user subject
* enhanced Trusted Association Interceptor (TAI) support
* explicit documentation for the WebSphere Application Server login process
* the ability to assert complete user credentials to WebSphere Application Server (including group information)
* replication of subjects in a distributed environment
plus a number of beneficial extensions to the security programming model.
This article will describe these new features in detail. The next sections provide some background on the fundamentals of the WebSphere Application Server authentication process and an overview of JAAS, then the remainder of the article will describe the most important aspects of these features as they relate to authentication.
For more details, please visit the url below:
[url]http://www.ibm.com/developerworks/websphere/techjournal/0508_benantar/0508_benantar.html[/url]
扫一扫
被折叠的 条评论
为什么被折叠?
到【灌水乐园】发言
