I remembered that in my previous company, they write a specialized software for doing the user authentication to all the systems. This project is so large, which requires so many resources to work on it.
Now, I used the login authentication provided by JBoss instead. Through the login-config.xml configuration, I can easily set all the things up.
Pros:
- Easy to configure, saves time
- There are many login modules. I’m using the one authenticated with Database
- The encrytion are done. I don’t need to care security myself
Cons:
- The interface is so simple
- You can use a form instead, where you can put beautiful layouts around. However, the security level will be reduced
In order to strengthen the functions and securities of JBoss login, which fits your needs, there are some more backend things to do.
For example, if you want to control the maximum login attempt, the original JBoss login cannot do this. You should implement your own logic. Here is an example.
Building a Custom JBoss Login Module - http://www.informit.com/articles/article.asp?p=389111&seqNum=7&rl=1
No comments
Comments feed for this article
Trackback link
http://blog.planner4u.org/blog/2006/08/09/login-control/trackback/