Securing WebLogic Server 12c [Instant]


This title is available as an eBook only
Securing WebLogic Server 12c [Instant]
eBook: $19.99
Formats: PDF, PacktLib, ePub and Mobi formats
$16.99
save 15%!
Print & eBook also available on:
Learn in an Instant - Short, Fast, Focused
Overview
Table of Contents
Author
Support
Sample Chapters
  • Discover Authentication providers
  • Configure security for WebLogic applications and develop your own security providers
  • Step by step guide to administer and configure WebLogic security providers
  • Quick guide to security configuration in WebLogic realm

Book Details

Language : English
eBook : 100 pages
Release Date : November 2012
ISBN : 1849687781
ISBN 13 : 9781849687782
Author(s) : Luca Masini, Rinaldi Vincenzo
Topics and Technologies : All Books, Networking and Servers, Enterprise, Oracle

Table of Contents

Preface
Chapter 1: WebLogic Security Concepts
Chapter 2: WebLogic Security Realm
Chapter 3: Java EE Security with WebLogic
Chapter 4: Creating Custom Authentication Providers with Maven
Chapter 5: Integrating with Kerberos SPNEGO Identity Assertion
Index
  • Chapter 1: WebLogic Security Concepts
    • General concept of security in Java EE
      • WebLogic security architecture
      • Identifying – Subjects, Principals, and Credentials
      • WebLogic resources
      • Writing custom providers – MBeans
    • Authentication Providers
      • Authentication under WebLogic
      • MBean and JAAS
      • Multipart Authentication Provider
      • Perimeter Authentication
    • Identity Assertion
    • Credential Mapper
    • JASPIC and Java EE
    • JACC
    • Summary
    • Chapter 2: WebLogic Security Realm
      • Configuration of local LDAP server: user/roles/lockout
        • Users and groups
          • Users section
          • Groups section
        • Security role condition
          • Basic
          • Date and time-based
          • Context element
          • User lockout
          • Unlocking user
      • Configuring an external LDAP for Authentication/Authorization
        • Configuring a new provider
        • Control Flag
        • Active Directory provider-specific configuration
          • Connection
          • Users
          • Groups
          • Static groups
          • General
        • Performance options
          • Principal Validator Cache
        • Troubleshooting problems
          • User lockout in an Active Directory context
      • Using Identity Assertion
      • Summary
      • Chapter 3: Java EE Security with WebLogic
        • Setting up an Enterprise Maven project
          • Creating the modules with maven-archetype-plugin
          • Installing the WebLogic Server and the WebLogic Maven plugin
            • Configuring wls-maven-plugin into the EAR POM
          • Split deploy and beabuild-maven-plugin
          • Launching our Hello Maven and WebLogic world application
        • Securing the web module
          • Standard DD mapping
          • Custom Roles Mapping
          • Programmatic security
          • Programmatic security with WebLogic XACML provider
        • A RESTful and secure EJB component
          • Bean packaged into the WAR module
          • Changing Security Identity with RunAs
          • Securing the EJB module
        • Summary
        • Chapter 4: Creating Custom Authentication Providers with Maven
          • The Maven project
            • Creating the Maven project
            • Dependencies
            • Reconfiguring standard plugins
            • Adding WebLogic MBeanMaker to the POM
            • Defining the MBean with an MDF File
          • Writing the MBean implementation
            • Initializing the provider
            • Implementation of the provider
          • Custom JAAS LoginModule
            • The login() method
            • Lifecycle methods – commit(), abort(), and logout()
            • A simple SSO JSP
            • Running the provider
          • Summary
          • Chapter 5: Integrating with Kerberos SPNEGO Identity Assertion
            • Using Identity Assertion SSO Kerberos in a Microsoft domain
              • Windows client needs to be in the Active Directory domain
              • Windows client session needs to be logged in the Active Directory domain
              • Integrated Windows Authentication
              • DNS URL entry configuration and SPN definition
              • Technical Active Directory user
              • Keytab generation and the krb5 config file
              • JAAS file creation
              • WLS init startup arguments configuration
            • SPNEGO Identity asserter configuration
              • Debugging issues
            • Summary

            Luca Masini

            Luca Masini is a Senior Software Engineer and Architect who started as a Game Developer for Commodore 64 (Football Manager) and Commodore Amiga (Ken il Guerriero); he soon switched to object-oriented programming and, from its inception in 1995, he was always attracted to the Java language. He worked on this passion as a consultant for some major Italian banks, developing and integrating major software projects for which he has often taken on the technical leadership role. He adapted Java Enterprise in environments where COBOL was the flagship platform, converting them from mainframe-centric to distributed. He then shifted his focus to open source, starting from Linux, and then enterprise frameworks, with which he was able to introduce concepts like IoC, ORM, and MVC with minimum impact. He was an early adopter of Spring, Hibernate, Struts, and a whole host of other technologies that in the long run have given his customers a technological advantage and because of which development costs have also lowered. Lately, however, his attention has been completely directed towards the simplification and standardization of development with Java EE, and for this reason he's now working at the Information and Communications Technology department of a large Italian company to introduce advanced build tools (Maven and Continuous Integration), archetypes of projects, and Agile Development with plain standards. He has worked on the following books published by Packt Publishing: • Google Web Toolkit • Spring Web Flow 2 • Spring Persistence with Hibernate

            Rinaldi Vincenzo

            Vincenzo Rinaldi was born in Milan, Italy, and continues to live and work there. He has over 10 years of experience with system administration in critical contexts, where he contributes with designing, managing, and supporting internal IT infrastructures. He studies and researches many technologies, products, Operating Systems, and custom implementations on a daily basis to meet the business processes. He works with many suppliers, internal teams, and customer services in a mass retail company and coordinates a team to work in the middleware, Operating Systems, and DB stack. He is an RHCE Certified Engineer and also has great experience in WebLogic setup and administration, generally in the middleware layer. You can read more about him on his Linkedin profile at http://www.linkedin.com/in/vincenzorinaldi.
            Sorry, we don't have any reviews for this title yet.

            Submit Errata

            Please let us know if you have found any errors not listed on this list by completing our errata submission form. Our editors will check them and add them to this list. Thank you.

            Sorry, there are currently no downloads available for this title.

            Frequently bought together

            Securing WebLogic Server 12c [Instant] +    Oracle SOA Suite 11g Developer's Cookbook =
            50% Off
            the second eBook
            Price for both: £19.54

            Buy both these recommended eBooks together and get 50% off the cheapest eBook.

            What you will learn from this book

            • Setup your development environment for WebLogic with Maven
            • Develop applications with Maven using fast split-deployment
            • Configure your applications to take advantage of Java EE Security
            • Understand how to integrate with WebLogic security
            • Configure a Security Realm from scratch
            • Integrate with your enterprise security systems
            • Detailed how-to Kerberos single-sign-on configuration with a little, but userful, knowledge base to solve some typical issue

            In Detail

            Security is a must in modern Enterprise architecture, and WebLogic implements a very complete and complex architecture for configuration and implementation, and we need to deeply know in technologies, terminology and how the security process works between all actors.
            Transparent security of your applications and Weblogic infrastructure need a good knowledge of the issues you can incur in this long and error prone configuration process.

            "Securing WebLogic Server 12c" will simplify a complex world like WebLogic Security, helping the reader to implement and configure. It’s the only fast guide that will let you develop and deploy in a production system with best practices both from the development world and the operation world.

            This book will try to make a clear picture of Java EE Security with clean and simple step-by-step examples that will guide the reader to security implementation and configuration

            From the concepts of Java EE Security to the development of secure application, from the configuration of a realm to the setup of Kerberos Single Sign on, every concept is expressed in simple terms and surrounded by examples and pictures. Finally, also a way to develop WebLogic Security Providers with Maven, so that you can add the security part of your infrastructure to your enterprise best practices.

            Approach

            This book is written in simple, easy to understand format with lots of screenshots and step-by-step explanations.

            Who this book is for

            If you are a WebLogic Server administrator looking forward to a step by step guide to administer and configure WebLogic security, then this is the guide for you. Working knowledge of WebLogic is required.

            Code Download and Errata
            Packt Anytime, Anywhere
            Register Books
            Print Upgrades
            eBook Downloads
            Video Support
            Contact Us
            Awards Voting Nominations Previous Winners
            Judges Open Source CMS Hall Of Fame CMS Most Promising Open Source Project Open Source E-Commerce Applications Open Source JavaScript Library Open Source Graphics Software
            Resources
            Open Source CMS Hall Of Fame CMS Most Promising Open Source Project Open Source E-Commerce Applications Open Source JavaScript Library Open Source Graphics Software