GlassFish v3: Elements of Administrative Security ...
By bloggerkedar on Oct 18, 2009
Through a series of posts, I plan to undertake a rather mammoth task and i.e. unravel the secrets of how GlassFish admin security works. At times, I may digress into other details about how GlassFish v3 works, but only when that kind of detail is required. This series of blog-posts (titled: GlassFish v3: Elements of Administrative Security ...) will hopefully answer all your questions regarding admin security of GlassFish and will increase your confidence of deploying GlassFish in production.
I am not going to go through the terminology here because several good resources exist for that. For example, I assume the reader to be (somewhat) familiar with terms like authentication, authorization, SSL, Java EE security, LDAP etc. If not, please familiarize yourself with them first. The series has been designed to guide you from development to production, i.e. we start with downloading and unzipping a GlassFish v3 bundle (e.g. glassfish.zip), running some applications, getting comfortable with GlassFish as a development environment and then move over to production. We won't spend much time on being comfortable with development, however, since there are plenty of excellent resources available on blogs.sun.com and elsewhere for the same. It's the deployment that is of essence to this series.
Here are the topics that appear in this series (when a blog-post for a particular topic is available, it will be linked to from here):
- Administrative clients of GlassFish v3 (How you can invoke into administration backend)
- The common administration security gate (aka, the backend that handles all administrative accesses)
- Passwords, passwords, passwords (a survey of various GlassFish passwords, with focus on administration)
- Managing administrative users (creating/deleting/modifying admin users and changing their passwords)
- Configuring (corporate) LDAP (using LDAP as the authentication and authorization backend)
- Troubleshooting FAQ (your one-stop shop to troubleshoot problems)
- GlassFish v3 Admin Best Practices