4.3. Securing Web components

This section presents simple scenarios on how to secure different Web components. We assume that the roles are defined for the application as in the ITSOBank sample application.

4.3.1. Static content

Static resources of the enterprise application can be secured only if they are served by WebSphere. WebSphere cannot manage access to the static content that resides on the Web server. All the static content that needs to be protected by WebSphere Application Server must be packaged into the Web module (.war, Web Archive file). Static HTML pages can be served by the servlet that implements file serving behavior.

The ...

Get IBM WebSphere V5.0 Security: WebSphere Handbook Series now with the O’Reilly learning platform.

O’Reilly members experience books, live events, courses curated by job role, and more from O’Reilly and nearly 200 top publishers.