How can a Web application access back-end services under the rights of the end-user?
If credential delegation is enabled, the server component will have access to a credential delegated by the end-user. This is available as an instance of the class org.ietf.jgss.GSSCredential which can then be used to establish a security context with a back-end service using the GSS API on behalf of the end-user.
Future releases of VSJ will support "non-programmatic delegation" to common back-end services, that is, allow access to these services using delegated credentials without coding to the GSS API.
© ALL RIGHTS RESERVED. Feedback Terms of Use Privacy Cookie Preference Center