Java Forum

Ask Question   UnAnswered
Home » Forum » Java       RSS Feeds

jee 5 securing web application

  Asked By: Thomas    Date: Nov 07    Category: Java    Views: 813

We want to secure our web application in JEE 5. The normal solution in tutorials is using of <security-constraint> tag in the web.xml file, but in real application the size of web.xml will reach to 4M that will reduce performance!

If we save this security constraints of URIs in database then we should connect to database for each page request!!

Please help us to solve this problem with low affect on performance.



2 Answers Found

Answer #1    Answered By: Eline Bakker     Answered On: Nov 07

you don't have to declare all your urls as secure  pages, you may give a pattern say, /my-path/* and after the container reaches that page, all other pages will be secured as well

however, it's not possible to locate the URIs from database, but if it was possible, the performance would decline even worst than current configuration.

Answer #2    Answered By: Harriet Hughes     Answered On: Nov 07

I suggest you "front controller " pattern.

Didn't find what you were looking for? Find more on jee 5 securing web application Or get search suggestion and latest updates.