Skip to main content

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index] [List Home]
[] Java EE Security API Specification (JSR 375)

Hi All,

Please correct me if I am wrong, The Security Api 1.0 is great thinks, but the handling of the user's groups still server specific (Example: on WildFly, the groups just equal with the role name). I think it would be nice if the group is group from LDAP or programmatically created from anywhere (database, file, new protocol...).

The medium or the big companies have custom certificate system and I think the intermediate certificate as group at client authentication or programmatically trusted certificate makes sense.

Best regards / Üdvözlettel,
Gergely Molnár

Back to the top