Summary
This chapter provided an introduction to the GlassFish Server's security features. It also described how you can secure the Glass Server environment, and the applications deployed to it. At this point, you should be comfortable with the big picture of GlassFish Server's security model, and you should also be able to configure GlassFish to address common security concerns.
Security is always an ever-changing field. Currently, with more and more efforts being put in integrating many heterogeneous systems together, many new technology, standards and products have emerged to address the security issues in these scenarios. For example, the OpenSSO project (http://opensso.org) implements an extensible identity and access management service that supports many advanced features such as pluggable web service security, cross domain single sign-on. OpenSSO can be easily integrated with the GlassFish Server to enhance the security capability. We strongly encourage you to spend time and efforts...