Choice between Servlet and EJB

Google

Mailing List

Home

Forum Home

JBoss - Java Application Server

Tomcat - JSP/Servlet container

Struts - A MVC web framework

iText - An open source PDF Java Library

JDOM - JDOM XML Parser

J2EE - A mailing list for Java(tm) 2 Platform, Enterprise Edition

J2EE Pattern - An interest list for Sun Java Center J2EE Pattern Catalog

JSP - A mailing list about Java Server Pages specification and reference

Servlet - A mailing list for discussion about Sun Microsystem's Java Servlet API Technology

Struts & Hibernate

Subjects

•	JSP editor plugin for eclipse ?
•	org apache jasper JasperException: Unable to compile class for JSP
•	Tomcat: Connection reset by peer: socket write error
•	Cannot retrieve definition for form bean null
•	Struts Tiles Tutorial (free Struts training)
•	Where do I download Tomcat 4 0 6?
•	Data Access Object (DAO) pattern, example DAO 's
•	Where to download Tomcat v 4 1 24 from?
•	Tomcat 5 0 16 Requested resource not available
•	Oracle Connection Pooling in 3 2 2
•	Servlet : Session invalidate
•	Servlet action is currently unavailable
•	Tomcat/Struts Unicode Encoding/Decoding problems
•	Tomcat and webapplication specific java library path
•	Running a Simple JMS Example
•	Mapping in workers2 properties
•	org apache jasper JasperException
•	Cannot find message resources under key org apache struts action MESSAGE
•	problem with html:text bean throwing exception
•	Cannot find message resources under key org apache struts action MESSAGE
•	invalid direct reference problem with solution
•	Tool for jsp debug Try Sysdeo Eclipse Plugin
•	Tomcat 5 Cannot load JDBC driver class 'null ' SQL state: null
•	weblogic ejbc
•	java properties file
•	Jboss 3 2 3 Coyote Can 't re
•	Tomcat 5, Apache2 and mod jk2 integration problem
•	JBoss example problem new to J2EE
•	url string for connecting jboss to oracle
•	Value attribute of <html:checkbox
•	javax servlet ServletException: BeanUtils populate
•	HTTP Status 404 The requested resource is not available
•	5 0 18: Windows XP Pro vs Windows 2000

Choice between Servlet and EJB

Choice between Servlet and EJB

2004-11-23 - By Kurien Joseph

Back

Reply: 1 2

The best way to provide security is store user credentials in a LDAP or
Database security. This allows management user profile and his
authorization and authentication.

Using the Factory design pattern, create a Factory Session bean where
the first call to get Service bean(stateless or stateful) you would pass
in the
User credentials. Use the factory bean to do the authorization and
authentication and return to the user the handle to your priced session
bean.

Hence through this approach you can centralize your security
implementation and have a neat implementation.

-Kurien

-- --Original Message-- --
From: A mailing list for Java(tm) 2 Platform, Enterprise Edition
[mailto:J2EE-INTEREST@(protected)] On Behalf Of Ranjeeth kumar
Sent: Tuesday, November 23, 2004 12:02 PM
To: J2EE-INTEREST@(protected)
Subject: Choice between Servlet and EJB

All-
This is the scenario
Application Server : Weblogic
Webserver : Sun One
Security : SiteMinder SSL with LDAP

I have multiple applications (multiple ear's, different weblogic
instances ) running in the environment. There are many places I need
to share the information between the application's, those are mainly
read operations.

First of all I thought of building "stateless session beans" . But I
got stuck up at security. All my authentication is based on LDAP. And
my security doesn't allow every users to view all information across
system. My services can be accessed either from Web or from non-web
environment (Standalone java program).

What I really need is user authentication before accessing the service
which is really difficult with EJB.

Then I thought of Servlet which will talk to business objects and
return the data. Since the servlet is protected under the websecurity,
there is no way user can access it without authentication.

I know the advantages of EJB, but in this case I am performing read
operations, and it is not of high volume.

Did anyone of u handled this type of situation ? your help and advice
will be really appreciated.

Thanks in advance

=========================================================================To
unsubscribe, send email to listserv@(protected) and include in the
body
of the message "signoff J2EE-INTEREST". For general help, send email to
listserv@(protected) and include in the body of the message "help".

==========================================================================To
unsubscribe, send email to listserv@(protected) and include in the body
of the message "signoff J2EE-INTEREST". For general help, send email to
listserv@(protected) and include in the body of the message "help".