Contents for Programming Security For Java Applications
Introduction
Java Security Service Module Environment
Java Security Service Module Functional Description
Security Service APIs
Security Framework
Security Providers
Java Security Service Module Concepts
General Concepts
Anonymous User
Compatibility
DeepTokenEnumeration
TokenEnumeration
Concepts that Relate to Interfaces and Classes
AccessResult
Application Configuration
Application Context
AppContextElement
AttributeValueEnumeration
AuditRecord
AuthenticIdentity
ContextAuditRecord
HashMapContext
IdentityRole
NameAttributeType
NameAttributeValue
NamedObjects
NamingAuthority
NamingAuthorityManager
PolicyDomain
RuntimeAction
RuntimeResource
SecurityRuntime
ServiceType
ServiceVersion
SimpleContextElement
Naming Authority
Why Use a Naming Authority?
How the Use of Naming Authorities Guarantees Uniqueness
How a Naming Authority Adds Structure
Associating a Named Object with a Naming Authority
Types of Authorities Supported
Sub-Authorities
Peer Authorities
Self-Referencing Authorities
Supported Naming Authority Attributes
SINGLE_VALUE and MULTI_VALUE PREFIX Attribute
SINGLE_VALUE and MULTI_VALUE TERMINAL Attribute
SINGLE_VALUE Attribute
MULTI_TOKEN Attribute
Pre-Configured Naming Authorities
Naming Authority Classes
Attribute Precedence
Java Security Service Module APIs
Java Security Service Module APIs
AuthenticationService API
AuthorizationService API
AuditingService API
RoleService API
CredentialMappingService API
Java SDK APIs
Developing Applications Using the Java Security Service Module
Overview of the Application Programming Steps
Choosing an Application Programming Model
Defining the Application Context and Structure
Defining and Specifying Naming Conventions
Defining and Implementing a Naming Authority
Using the DataDrivenAuthority Class
Using a DataDrivenAuthority XML File
Creating a Custom Naming Authority Class from the NamingAuthority Base Class
Registering a New Naming Authority
Using a Naming Authority Class
Using an XML file
Using a DataDrivenAuthority Object
Writing Java Security Service Module Applications
Knowledge Required of the Java Security Service Module Environment
Writing an Authentication Application
Step-By-Step Procedure for Writing an Authentication Application
Other AuthenticationService Methods
Writing an Authorization Application
Step-by-Step Procedure for Writing an Authorization Application
AuthorizationService.isAuthenticationRequired Method
Writing an Auditing Application
Writing a Role Service Application
Writing a Credential Mapping Application