Oracle GlassFish Server 3.0.1 Administration Guide

Authentication Providers

The authentication layer is the message layer on which authentication processing must be performed. GlassFish Server enforces web services message security at the SOAP layer. The types of authentication that are supported include the following:

GlassFish Server invokes authentication providers to process SOAP message layer security. The message security providers provide information such as the type of authentication that is required for the request and response messages. The following message security providers are included with GlassFish Server:

The default server provider is used to identify the server—side provider to be invoked for any application for which a specific server provider has not been bound.