<!DOCTYPE HTML PUBLIC "-//W3C//DTD HTML 4.0 Transitional//EN">
<html>
<body link="#355491" alink="#4262a1" vlink="#355491" style="background: #e2e2e2; margin: 0; padding: 20px;">
<div>
<table cellpadding="0" bgcolor="#FFFFFF" border="0" cellspacing="0" style="border: 1px solid #dadada; margin-bottom: 30px; width: 100%; -moz-border-radius: 6px; -webkit-border-radius: 6px;">
<tbody>
<tr>
<td>
<table border="0" cellpadding="0" cellspacing="0" bgcolor="#FFFFFF" style="border: solid 2px #ccc; background: #dadada; width: 100%; -moz-border-radius: 6px; -webkit-border-radius: 6px;">
<tbody>
<tr>
<td bgcolor="#000000" valign="middle" height="58px" style="border-bottom: 1px solid #ccc; padding: 20px; -moz-border-radius-topleft: 3px; -moz-border-radius-topright: 3px; -webkit-border-top-right-radius: 5px; -webkit-border-top-left-radius: 5px;">
<h1 style="color: #333333; font: bold 22px Arial, Helvetica, sans-serif; margin: 0; display: block !important;">
<!-- To have a header image/logo replace the name below with your img tag -->
<!-- Email clients will render the images when the message is read so any image -->
<!-- must be made available on a public server, so that all recipients can load the image. -->
<a href="http://community.jboss.org/index.jspa" style="text-decoration: none; color: #E1E1E1">JBoss Community</a></h1>
</td>
</tr>
<tr>
<td bgcolor="#FFFFFF" style="font: normal 12px Arial, Helvetica, sans-serif; color:#333333; padding: 20px; -moz-border-radius-bottomleft: 4px; -moz-border-radius-bottomright: 4px; -webkit-border-bottom-right-radius: 5px; -webkit-border-bottom-left-radius: 5px;"><h3 style="margin: 10px 0 5px; font-size: 17px; font-weight: normal;">
Choosing an Authorization System for JBoss AS
</h3>
<span style="margin-bottom: 10px;">
created by <a href="http://community.jboss.org/people/anil.saldhana">Anil Saldhana</a> in <i>PicketBox Development</i> - <a href="http://community.jboss.org/docs/DOC-17063">View the full document</a>
</span>
<hr style="margin: 20px 0; border: none; background-color: #dadada; height: 1px;">
<div class="jive-rendered-content"><p>This article should guide you to choose an authorization system for your applications running in JBoss AS.  The applications in question are web components and EJB components. This article does not describe the authorization scheme for other EE components.</p><h2></h2><h2>Type of Authorization</h2><ol><li style="text-align: start;">Specification - Conform to the Servlet and EJB specifications.  (web.xml, ejb-jar.xml/annotations)</li><li style="text-align: start;">JACC - Conform to the JSR 115 specification.</li><li style="text-align: start;">XACML - Conforms to the Oasis XACML v2 specification.  This is a non-standard extension.</li></ol><h2 style="text-align: start;"></h2><h2 style="text-align: start;">Documentation</h2><ol><li style="text-align: start;">Specification:  Refer to the standard JBoss AS documentation.</li><li style="text-align: start;">JACC:  Refer to JBoss AS documentation to configure the JACC providers.</li><li style="text-align: start;">XACML:  <a class="jive-link-external-small" href="http://java.dzone.com/articles/security-features-jboss-510-1">http://java.dzone.com/articles/security-features-jboss-510-1</a></li></ol><p style="min-height: 8pt; height: 8pt; padding: 0px;"> </p><h2 style="text-align: start;"></h2><h2 style="text-align: start;">Some Caveats:</h2><ul><li style="text-align: start;">We do not support an XACML based JACC provider.  Keep the concepts separate.  XACML is an extensive access control specification where as JACC is a EE specification that extends the Java Permission Model to the Web and EJB Components.</li></ul></div>
<div style="background-color: #f4f4f4; padding: 10px; margin-top: 20px;">
<p style="margin: 0;">Comment by <a href="http://community.jboss.org/docs/DOC-17063">going to Community</a></p>
<p style="margin: 0;">Create a new document in PicketBox Development at <a href="http://community.jboss.org/choose-container!input.jspa?contentType=102&containerType=14&container=2088">Community</a></p>
</div></td>
</tr>
</tbody>
</table>
</td>
</tr>
</tbody>
</table>
</div>
</body>
</html>