Securing WebLogic Server 12c [Instant]

Overview | Reviews | Author | Support | Sample Chapters

This title is available as an eBook only

eBook: $19.99
Formats: PDF, PacktLib, ePub and Mobi formats

$16.99
save 15%!

Print & eBook also available on:

Overview

Table of Contents

Author

Reviews

Support

Sample Chapters

Discover Authentication providers
Configure security for WebLogic applications and develop your own security providers
Step by step guide to administer and configure WebLogic security providers
Quick guide to security configuration in WebLogic realm

Book Details

Language : English
eBook : 100 pages
Release Date : November 2012
ISBN : 1849687781
ISBN 13 : 9781849687782
Author(s) : Luca Masini, Rinaldi Vincenzo
Topics and Technologies : All Books, Enterprise, Oracle

Preface
Chapter 1: WebLogic Security Concepts
Chapter 2: WebLogic Security Realm
Chapter 3: Java EE Security with WebLogic
Chapter 4: Creating Custom Authentication Providers with Maven
Chapter 5: Integrating with Kerberos SPNEGO Identity Assertion
Index

Preface

Chapter 1: WebLogic Security Concepts

General concept of security in Java EE

WebLogic security architecture
Identifying – Subjects, Principals, and Credentials
WebLogic resources
Writing custom providers – MBeans

Authentication Providers

Authentication under WebLogic
MBean and JAAS
Multipart Authentication Provider
Perimeter Authentication

Identity Assertion
Credential Mapper
JASPIC and Java EE
JACC
Summary

Chapter 2: WebLogic Security Realm

Configuration of local LDAP server: user/roles/lockout

Users and groups

Users section
Groups section

Security role condition

Basic
Date and time-based
Context element
User lockout
Unlocking user

Configuring an external LDAP for Authentication/Authorization

Configuring a new provider
Control Flag
Active Directory provider-specific configuration

Connection
Users
Groups
Static groups
General

Performance options

Principal Validator Cache

Troubleshooting problems

User lockout in an Active Directory context

Using Identity Assertion
Summary

Chapter 3: Java EE Security with WebLogic

Setting up an Enterprise Maven project

Creating the modules with maven-archetype-plugin
Installing the WebLogic Server and the WebLogic Maven plugin

Configuring wls-maven-plugin into the EAR POM

Split deploy and beabuild-maven-plugin
Launching our Hello Maven and WebLogic world application

Securing the web module

Standard DD mapping
Custom Roles Mapping
Programmatic security
Programmatic security with WebLogic XACML provider

A RESTful and secure EJB component

Bean packaged into the WAR module
Changing Security Identity with RunAs
Securing the EJB module

Summary

Chapter 4: Creating Custom Authentication Providers with Maven

The Maven project

Creating the Maven project
Dependencies
Reconfiguring standard plugins
Adding WebLogic MBeanMaker to the POM
Defining the MBean with an MDF File

Writing the MBean implementation

Initializing the provider
Implementation of the provider

Custom JAAS LoginModule

The login() method
Lifecycle methods – commit(), abort(), and logout()
A simple SSO JSP
Running the provider

Summary

Chapter 5: Integrating with Kerberos SPNEGO Identity Assertion

Using Identity Assertion SSO Kerberos in a Microsoft domain

Windows client needs to be in the Active Directory domain
Windows client session needs to be logged in the Active Directory domain
Integrated Windows Authentication
DNS URL entry configuration and SPN definition
Technical Active Directory user
Keytab generation and the krb5 config file
JAAS file creation
WLS init startup arguments configuration

SPNEGO Identity asserter configuration

Debugging issues

Summary

Index

Luca Masini

Luca Masini is a Senior Software Engineer and Architect who started as a Game Developer for Commodore 64 (Football Manager) and Commodore Amiga (Ken il Guerriero); he soon switched to object-oriented programming and, from its inception in 1995, he was always attracted to the Java language. He worked on this passion as a consultant for some major Italian banks, developing and integrating major software projects for which he has often taken on the technical leadership role. He adapted Java Enterprise in environments where COBOL was the flagship platform, converting them from mainframe-centric to distributed. He then shifted his focus to open source, starting from Linux, and then enterprise frameworks, with which he was able to introduce concepts like IoC, ORM, and MVC with minimum impact. He was an early adopter of Spring, Hibernate, Struts, and a whole host of other technologies that in the long run have given his customers a technological advantage and because of which development costs have also lowered. Lately, however, his attention has been completely directed towards the simplification and standardization of development with Java EE, and for this reason he's now working at the Information and Communications Technology department of a large Italian company to introduce advanced build tools (Maven and Continuous Integration), archetypes of projects, and Agile Development with plain standards. He has worked on the following books published by Packt Publishing: • Google Web Toolkit • Spring Web Flow 2 • Spring Persistence with Hibernate

Rinaldi Vincenzo

Vincenzo Rinaldi was born in Milan, Italy, and continues to live and work there. He has over 10 years of experience with system administration in critical contexts, where he contributes with designing, managing, and supporting internal IT infrastructures. He studies and researches many technologies, products, Operating Systems, and custom implementations on a daily basis to meet the business processes. He works with many suppliers, internal teams, and customer services in a mass retail company and coordinates a team to work in the middleware, Operating Systems, and DB stack. He is an RHCE Certified Engineer and also has great experience in WebLogic setup and administration, generally in the middleware layer. You can read more about him on his Linkedin profile at http://www.linkedin.com/in/vincenzorinaldi.

Sorry, we don't have any reviews for this title yet.

Submit Errata

Please let us know if you have found any errors not listed on this list by completing our errata submission form. Our editors will check them and add them to this list. Thank you.

Sorry, there are currently no downloads available for this title.

Frequently bought together

Oracle SOA Suite 11g Developer's Cookbook

50% Off
the eBooks

Buy both these recommended eBooks together and get 50% off the total price

What you will learn from this book

Setup your development environment for WebLogic with Maven
Develop applications with Maven using fast split-deployment
Configure your applications to take advantage of Java EE Security
Understand how to integrate with WebLogic security
Configure a Security Realm from scratch
Integrate with your enterprise security systems
Detailed how-to Kerberos single-sign-on configuration with a little, but userful, knowledge base to solve some typical issue

In Detail

Security is a must in modern Enterprise architecture, and WebLogic implements a very complete and complex architecture for configuration and implementation, and we need to deeply know in technologies, terminology and how the security process works between all actors.
Transparent security of your applications and Weblogic infrastructure need a good knowledge of the issues you can incur in this long and error prone configuration process.

"Securing WebLogic Server 12c" will simplify a complex world like WebLogic Security, helping the reader to implement and configure. It’s the only fast guide that will let you develop and deploy in a production system with best practices both from the development world and the operation world.

This book will try to make a clear picture of Java EE Security with clean and simple step-by-step examples that will guide the reader to security implementation and configuration

From the concepts of Java EE Security to the development of secure application, from the configuration of a realm to the setup of Kerberos Single Sign on, every concept is expressed in simple terms and surrounded by examples and pictures. Finally, also a way to develop WebLogic Security Providers with Maven, so that you can add the security part of your infrastructure to your enterprise best practices.

Approach

This book is written in simple, easy to understand format with lots of screenshots and step-by-step explanations.

Who this book is for

If you are a WebLogic Server administrator looking forward to a step by step guide to administer and configure WebLogic security, then this is the guide for you. Working knowledge of WebLogic is required.