JNDI, Security, and Identity
In addition to providing an object naming service, JNDI also establishes a client's identity within the server. By default, InitialContexts are created by the guest user. When an InitialContext is made, the client can specify a user name and password, and the WebLogic security system authenticates the user password combination. If the password is invalid, a javax.naming.NoPermissionException is thrown to the client. With a valid password, the user establishes an identity with the server.
Many resources in the WebLogic Server can be protected by Access Control Lists (ACLs). These resources may only be accessed by appropriate users. Creating an InitialContext with a user name and password effectively switches the client ...
Get J2EE™ Applications and BEA™ WebLogic Server™ now with the O’Reilly learning platform.
O’Reilly members experience books, live events, courses curated by job role, and more from O’Reilly and nearly 200 top publishers.
