Questions tagged [jacc]

JACC (Java Authorization Contract for Containers) is a spec that allows plugging in providers to handle the security decisions for a j2ee application server.

The Java Authorization Contract for Containers (JACC) is a specification that is introduced in Java 2 Platform, Enterprise Edition (j2ee) version 1.4 through the Java Specifications Request (jsr) 115 process. This specification defines a contract between J2EE containers and authorization providers.

The contract enables third-party authorization providers to plug into J2EE application servers to make the authorization decisions when a J2EE resource is accessed. The access decisions are made through the standard java.security.Policy object.

18 questions

votes

1 answer

EJB security custom JACC provider

our project has a very detailed authorization pattern so i had to implement my own JACC provider. now i have a problem with EJB security. i have an EJB method and i want to limit access to it based on its argument values for example consider the…

security ejb jacc

asked Jan 04 '12 at 19:26

arash

votes

0 answers

Payara/Glasssfish 5 Authorization Issue

I have a legacy Java EE application deployed in GlassFish 5.0.1. It uses a custom realm to authenticate users. When logged in and trying to access a protected resource it always throws a 403 error. The application was running on Java EE 7 and…

payara java-ee-8 glassfish-5 jacc

asked Jun 20 '23 at 15:07

chanafdo

5,016
3
29
46

votes

1 answer

JACC Policy Provider:Failed Permission Check permission (" ("java.security.SecurityPermission" "setPolicy") ")

If I deploy my jsf2.0 web app on glassfish3.1.2 it is working fine and login mechanism is working fine. But same app when i am trying to deploy on glassfish3.1.2 on my colleagues machine at the time of login it is giving JACC permission check…

glassfish-3 access-denied group-policy jacc

asked Jul 18 '12 at 21:55

user1347618

Prev 1