Java Authorization Contract for Containers (Sun GlassFish Enterprise Server v3 Prelude Administration Guide)

Sun GlassFish Enterprise Server v3 Prelude Administration Guide

Previous: Roles
Next: Auditing

Java Authorization Contract for Containers

Java Authorization Contract for Containers (JACC) is the part of the Java EE specification that defines an interface for pluggable authorization providers. This enables you to set up third-party plug-in modules to perform authorization. By default, the Enterprise Server provides a simple, file-based authorization engine that complies with the JACC specification. You can also specify additional third-party JACC providers.

JACC providers use the Java Authentication and Authorization Service (JAAS) APIs. JAAS enables services to authenticate and enforce access controls upon users. JAAS implements a Java technology version of the standard Pluggable Authentication Module (PAM) framework.

Previous: Roles
Next: Auditing