|
|
Summary
- JAAS extends base security
model to accomodate concept
of "users"
- Pluggable, extensible
- Kerberos provides an excellent
illustration of the power and
ease of using JAAS to extend
application security
- Subject.doAs() extends the
ProtectionDomains of all classes / methods
which the PrivilegedAction object calls
- The basic CodeSource authorization
algorithm is unmodified
- Subsequent Subject.doAs() calls replace
the Subject in the authorization algorithm
|
copyright © 2014 - all rights riserved by javatechnologycenter.com
