Enter your mobile number or email address below and we'll send you a link to download the free Kindle App. Then you can start reading Kindle books on your smartphone, tablet, or computer - no Kindle device required.
To get the free app, enter your mobile phone number.
Use the Amazon App to scan ISBNs and compare prices.
Windows 10 For Dummies Video Training
Get up to speed with Windows 10 with this video training course from For Dummies. Learn more.
If you buy a new print edition of this book (or purchased one in the past), you can buy the Kindle edition for only $2.99 (Save 88%). Print edition purchase must be sold by Amazon. Learn more.
For thousands of qualifying books, your past, present, and future print-edition purchases now lets you buy the Kindle edition for $2.99 or less. (Textbooks available for $9.99 or less.)
Top Customer Reviews
The book has eight chapters. After a short introduction to the Java EE security model in chapter one it moves on to GlassFish security realms. Another twenty something pages tell you about designing and developing secure Java EE applications. Chapter four dives into secure GlassFish environments followed by the fifth chapter caring for a secure GlassFish itself. Done with those, you are half through at page 146. The second half of the book is dedicated to two other products from the former Sun stack. Open Directory Services (OpenDS) is introduced in Chapter six. Followed by an introduction to OpenSSO (Open Single Sign-On) in chapter seven. Chapter eight describes how to secure Java EE applications using OpenSSO. The last chapter nine is dedicated to Web Service security with Open SSO. Each chapter is finished by a separate summary. The book closes with an index. Makes 275 content pages.
Writing and style
The book is an easy read. Not to complicated even for non native speakers like me. The author takes the time and space needed to describe most basic concepts and contexts. Very frequent links and tips in separate boxes help the reader to find out more about most of the topics. I also like the paperback and the format. It is easy to carry around and to use it as a reference book.
To be honest, I expected to read more about GlassFish and security as the title promised. Half the book the author is working with OpenDS and OpenSSO. Both not part of the GlassFish family and not necessarily related to Enterprise Java development. For sure, both products address problems developers face working. But every enterprise has it's own solution for this. And I personally do meet commercial products far more often.Read more ›
Packt Publishing requested that I review one of their latest titles on the subject of GlassFish: GlassFish Security by Masoud Kalali, available to buy from Packt's web site.
GlassFish Security has been a worth while read, adding to my awareness and knowledge of Java EE security best practices. I will definitely be applying the information presented in the book to current projects and future system design and development work.
GlassFish Security covers a very wide range of security topics, some of which will be applicable to web applications deployed on any JEE application server, whilst others are GlassFish and even host operating system specific.
The book doesn't just focus on programmatic security, making use of security APIs, annotations and XML configuration, but takes more of a complete systems view. OS and network security constraints, as well as enterprise wide system architecture considerations are explored.
The book is targeted at developers and system administrators, who have a sound footing working with JEE application servers, EJB development and have a working knowledge of Linux. To fully take advantage of this book you should know your way around the latest versions of GlassFish and probably NetBeans, have a Debian or Ubuntu install available, and have a keen interest in designing systems with security built in from the start.
The title of the book could quite easily have been GlassFish Security with OpenDS and OpenSSO, as they feature heavily in the later chapters.Read more ›
The book is efficient, has a clean layout and contains a logical progression of current JAVA EE and GlassFish Specific security topics. Mercifully, the author avoids the conversational "filler" found in many books which cover IT related topics resulting in heavy tomes where one must hunt for information that is relevant.
The first chapter is useful in that it quickly defines the terms and describes the concepts that either a developer or administrator will require in understanding how to secure an application that is targeted toward the GlassFish application server. Also, the author made a good choice in using a jdbc realm as his first realm example. Directory Services are becoming more popular but there are many of us who are still developing applications where our authentication schemes will be supported by groups and roles already defined in our company's or customer's existing database systems. That being said Mr. Kalali furnishes us with a fine chapter on the OpenDS directory server for those of us that would like to get started with an LDAP v3 directory server often used to store this kind of hierarchical user/role information. The book also covers more advanced topics relevant to larger organizations and applications including Single Source Sign.
The work produced by Mr. Kalali has benefited by the time and attention of the editors at Packet publishing. "GlassFish Security" is a pleasant physical product. The book is well formatted, well bound and its use of fonts and screen shots is clear and consistent.Read more ›
Most Recent Customer Reviews
I found this book as a collection of google-able basic material on Glassfish, OpenDS and OpenSSO. The book provides high-level guidance to a Glassfish programmer on the basics but... Read morePublished on October 23, 2010 by Prasad Reddy
This is a comprehensive book that covers all if not all security topics that have to do with GlassFish -- I checked all cases that I ran into when I was using / developing on /... Read morePublished on July 31, 2010 by Frank Kieviet