Overview
Watch a 32-minute conference talk from EclipseCon 2022 where Werner Keil and Ivar Grimstad explore the evolution and implementation of security standards in Jakarta EE. Learn how Jakarta Security has simplified and improved upon previous Java EE security specifications, enabling portable application security that integrates seamlessly with container security. Discover how authentication mechanisms like OAuth and OpenID Connect can be handled similarly to built-in container mechanisms, while features like @RolesAllowed and isUserInRole work as expected. Understand the role of Jakarta Authentication in managing caller credentials and identity validation, as well as Jakarta Authorization's SPI for security checking and constraint transformation. Get hands-on exposure to compatible implementations including Soteria, Exousia, Eclipse Glassfish, and Tomcat, with an interactive Q&A session focused on future security specifications in Jakarta EE 11 and beyond.
Syllabus
Jakarta EE Security - Sailing Safe in Troubled Waters
Taught by
Eclipse Foundation