We know that Jaas includes Authentication and Authorization, let's take a look at:
Authentication is as follows:
1) ANNOTATE @securitydomain ("Other" Public CalculatorBean Implements Calculator This will read Authentication Information from Users.properties: Kabir = ValidPassword
2) The JBoss class used is as follows: import org.jboss.security.securityassociation; import org.jboss.security.simpleprincipal;
3) SimplePrincipal is used to set the verification principle: securityassociation.setprincipal (New SimplePrincipal ("kabir"));
4) SecurityAssociation is used to verify according to the principles: securityassociation.setcredential ("invalidpassword" .tochararray ());
5) Verification is not passed, will throw Exception
Authorization is as follows:
1) The role @MethodPermissions ({"TEACHER"}) public int Divide (INT X, INT Y) {Return X / Y;} 2) Roles.properties sets roles Kabir = Student
3) Run judgment permissions and prompt: [java] insufficient method permissions, principal = kabir, interface = org.jboss.ejb3.ejbcontainerinvocation, requestroles = [teacher], principalroles = [student]
