As with other design forums on the JBoss website, this forum is solely dedicated to discussion of issues related to designing the security based services in JBoss.
Hence NO USER QUESTIONS will be entertained or tolerated. If you really need help or want to scream "Please Help", "Urgent" etc, please post your user questions at the user forum on security at:
http://www.jboss.com/index.html?module=bb&op=viewforum&f=49
Now given the above guidelines, we welcome people to participate in the design discussions on security. The following are welcome in the relevant threads on this forum on security design:
- Use Cases that add value to the discussion.
- Pointers to articles/literature.
- Solutions to design problems.
Here are some pointers to literature that you can familarize yourself to get deeper involvement in the design discussions on security.
JBossSX Wiki
http://wiki.jboss.org/wiki/Wiki.jsp?page=JBossSX
Java Security Architecture
http://java.sun.com/j2se/1.5.0/docs/guide/security/spec/security-specTOC.fm.html
JSR-196 Specification
http://jcp.org/en/jsr/detail?id=196
JavaTM Authorization Contract for Containers or JACC
http://jcp.org/en/jsr/detail?id=115
JavaTM Authentication and Authorization Service or JAAS
http://java.sun.com/products/jaas/
Apache Tomcat Realms
http://tomcat.apache.org/tomcat-5.5-doc/realm-howto.html