Security is a must in a modern Enterprise infrastructure, and WebLogic implements a very complete and complex architecture for configuration and implementation. That is why it is necessary to deeply know technologies, terminologies, and how the security process works between all actors. Securing WebLogic Server 12c aims to simplify the complex world of WebLogic Security, helping the reader to implement standard Java EE application security, and configuring it inside WebLogic with clean and simple step-by-step examples. This guide will let you develop and deploy in a production system with the best practices, both from the development world and the operation world. From the concepts of Java EE Security to the development of secure applications, from the configuration of a realm to the setup of Kerberos Single Sign-on, every concept is expressed in simple terms and completed by working examples and pictures. Finally, a way to develop WebLogic security providers with Maven is provided, so that you can add the security part of your infrastructure to your enterprise best practices.
Chapter 1, WebLogic Security Concepts, covers the custom concepts and framework that implement security inside the WebLogic server.
Chapter 2, WebLogic Security Realm, will allow you to understand in detail how the internal LDAP works and also explain the necessary configuration. Also explained in this chapter is how an existing LDAP server can be integrated with WebLogic. This chapter includes a complete troubleshooting section that will help you overcome some typical configuration mistakes.
Chapter 3, Java EE Security with WebLogic, explains how you can leverage all the power of WebLogic security using only standard Java EE coding and vice versa. Also, this chapter explains how you can have the value added feature from WebLogic in a standard Java EE application.
Chapter 4, Creating Custom Authentication Providers with Maven, shows a better way to create your own provider that can use the WebLogic framework to integrate your custom security needs.
Chapter 5, Integrating with Kerberos SPNEGO Identity Assertion, covers the Single Sign-On activation process between your Active Directory Domain/Kerberos Server and desktop clients through WebLogic, to access the protected application resource in a seamless way. Every configuration is explained in full detail for this complex task.