Nov 28th, 2005, 01:36 PM
Common security for different webapps
I have an EAR with a set of WARs, and application.xml declaring webapps and corresponding root contexts (e.g., /webapp1, /webapp2, etc.). What is the best way to implement common security enforcement (to control access to webapps by URLs and domain objects depending on the current user's rights without duplicating security code). Is it possible to put security-related classes and some XML configuration into separate common JAR?
Nov 30th, 2005, 04:32 PM