The Source for Java Technology Collaboration

Home » java.net Forums » GlassFish » GlassFish

Thread: Appropriate security mechanism for this case?

Welcome, Guest Help
Login Login
Guest Settings Guest Settings
This question is not answered. Helpful answers available: 2. Correct answers available: 1.

Reply to this Thread Reply to this Thread Search Forum Search Forum Back to Thread List Back to Thread List

Permlink Replies: 0
pboro

Posts: 3
Appropriate security mechanism for this case?
Posted: Oct 2, 2008 10:48 AM 		 
  Click to reply to this thread Reply

I need to create few web services that will be accessed by several clients. I want to authenticate and authorize the clients, so for example UsernameToken with separate credentials for each client would be fine. Instead, I would like to use certificates instead of usernames and passwords. So then there would be separate certificate for each client and each certificate must only be allowed to access certain web service.

Which is the correct security mechanism for this: Mutual Certificates Security, Endorsing Certificate or maybe some else? How do I recognize the certificate used to access the server to do authorization?


Point your RSS reader here for a feed of the latest messages in all forums
Go Back Back to Thread List



 XML java.net RSS
Feedback  | FAQ  | Press | Terms of Use
Privacy  |  Trademarks | Site Map
 
Your use of this web site or any of its content or software indicates your agreement to be bound by these Terms of Participation.
 
Copyright © 1995-2006 Sun Microsystems, Inc.
Collabnet Logo Cognisync Communities
Powered by Sun Microsystems, Inc.,
CollabNet and Cognisync