Jump to content

Talk:Java Authentication and Authorization Service

Page contents not supported in other languages.
From Wikipedia, the free encyclopedia
This is an old revision of this page, as edited by 81.246.190.66 (talk) at 02:01, 14 February 2007 (Created page with 'My first impression of JAAS is that it is rather complex. Wouldn't it suffice to have 3 components: * a client, * a server session and * a server authorisation The...'). The present address (URL) is a permanent link to this revision, which may differ significantly from the current revision.
(diff) ← Previous revision | Latest revision (diff) | Newer revision → (diff)

My first impression of JAAS is that it is rather complex. Wouldn't it suffice to have 3 components:

  • a client,
  • a server session and
  • a server authorisation

The client communicates with the server authorisation module, which updates the client's role in the server session. The client's role is checked before any method is called. Could anyone explain why JAAS needs 7 modules and 15 communication messages instead of only 3 modules and 3 communication messages in my approach?

Retrieved from "https://en.wikipedia.org/w/index.php?title=Talk:Java_Authentication_and_Authorization_Service&oldid=107974075"