Book Image

Securing WebLogic Server 12c

Book Image

Securing WebLogic Server 12c

Overview of this book

Security is a must in modern Enterprise architecture, and WebLogic implements a very complete and complex architecture for configuration and implementation, and we need to deeply know in technologies, terminology and how the security process works between all actors. Transparent security of your applications and Weblogic infrastructure need a good knowledge of the issues you can incur in this long and error prone configuration process. "Securing WebLogic Server 12c" will simplify a complex world like WebLogic Security, helping the reader to implement and configure. It's the only fast guide that will let you develop and deploy in a production system with best practices both from the development world and the operation world. This book will try to make a clear picture of Java EE Security with clean and simple step-by-step examples that will guide the reader to security implementation and configuration From the concepts of Java EE Security to the development of secure application, from the configuration of a realm to the setup of Kerberos Single Sign on, every concept is expressed in simple terms and surrounded by examples and pictures. Finally, also a way to develop WebLogic Security Providers with Maven, so that you can add the security part of your infrastructure to your enterprise best practices.

Related Content you might be interested in

Current Title:

Small book image
Securing WebLogic Server 12c
Nov, 2012 | 100 pages
No titles found
Table of Contents (12 chapters)
Securing WebLogic Server 12c
Securing WebLogic Server 12c
Credits
Credits
About the Authors
About the Authors
About the Reviewers
About the Reviewers
www.PacktPub.com
www.PacktPub.com
Preface
Preface
Free Chapter
1
WebLogic Security Concepts
WebLogic Security Concepts
General concept of security in Java EE
Authentication Providers
Identity Assertion
Credential Mapper
JASPIC and Java EE
JACC
Summary
2
WebLogic Security Realm
WebLogic Security Realm
Configuration of local LDAP server: user/roles/lockout
Configuring an external LDAP for Authentication/Authorization
Using Identity Assertion
Summary
3
Java EE Security with WebLogic
Java EE Security with WebLogic
Setting up an Enterprise Maven project
Securing the web module
A RESTful and secure EJB component
Summary
4
Creating Custom Authentication Providers with Maven
Creating Custom Authentication Providers with Maven
The Maven project
Writing the MBean implementation
Custom JAAS LoginModule
Summary
5
Integrating with Kerberos SPNEGO Identity Assertion
Integrating with Kerberos SPNEGO Identity Assertion
Using Identity Assertion SSO Kerberos in a Microsoft domain
SPNEGO Identity asserter configuration
Summary
Index
Index

About the Authors

Luca Masini is a Senior Software Engineer and Architect who started as a Game Developer for Commodore 64 (Football Manager) and Commodore Amiga (Ken il Guerriero); he soon switched to object-oriented programming and, from its inception in 1995, he was always attracted to the Java language.

He worked on this passion as a consultant for some major Italian banks, developing and integrating major software projects for which he has often taken on the technical leadership role. He adapted Java Enterprise in environments where COBOL was the flagship platform, converting them from mainframe-centric to distributed.

He then shifted his focus to open source, starting from Linux, and then enterprise frameworks, with which he was able to introduce concepts like IoC, ORM, and MVC with minimum impact. He was an early adopter of Spring, Hibernate, Struts, and a whole host of other technologies that in the long run have given his customers a technological advantage and because of which development costs have also lowered.

Lately, however, his attention has been completely directed towards the simplification and standardization of development with Java EE, and for this reason he's now working at the Information and Communications Technology department of a large Italian company to introduce advanced build tools (Maven and Continuous Integration), archetypes of projects, and Agile Development with plain standards.

He has worked on the following books published by Packt Publishing:

  • Google Web Toolkit

  • Spring Web Flow 2

  • Spring Persistence with Hibernate

Dedicated to my skunk
(Dedicato alla mia puzzola)

Vincenzo Rinaldi was born in Milan, Italy, and continues to live and work there. He has over 10 years of experience with system administration in critical contexts, where he contributes with designing, managing, and supporting internal IT infrastructures. He studies and researches many technologies, products, Operating Systems, and custom implementations on a daily basis to meet the business processes. He works with many suppliers, internal teams, and customer services in a mass retail company and coordinates a team to work in the middleware, Operating Systems, and DB stack.

He is an RHCE Certified Engineer and also has great experience in WebLogic setup and administration, generally in the middleware layer.

You can read more about him on his Linkedin profile at http://www.linkedin.com/in/vincenzorinaldi.

The first big thanks goes to my pregnant wife Nadia and my son Mattia, they have supported me with their energy. One big thanks to my colleague Luca Masini and all those colleagues who supported me in the writing of this book.

Previous Section
Next Chapter