Performing user authentication in Java EE / JSF using j_security_check

前端 未结 4 1398
北荒
北荒 2020-11-21 23:43

I\'m wondering what the current approach is regarding user authentication for a web application making use of JSF 2.0 (and if any components do exist) and Java EE 6 core mec

4条回答
  •  长发绾君心
    2020-11-22 00:20

    It should be mentioned that it is an option to completely leave authentication issues to the front controller, e.g. an Apache Webserver and evaluate the HttpServletRequest.getRemoteUser() instead, which is the JAVA representation for the REMOTE_USER environment variable. This allows also sophisticated log in designs such as Shibboleth authentication. Filtering Requests to a servlet container through a web server is a good design for production environments, often mod_jk is used to do so.

提交回复
热议问题