Sign Up to our social questions and Answers Engine to ask questions, answer people’s questions, and connect with other people.
Login to our social questions & Answers Engine to ask questions answer people’s questions & connect with other people.
Lost your password? Please enter your email address. You will receive a link and will create a new password via email.
Please briefly explain why you feel this question should be reported.
Please briefly explain why you feel this answer should be reported.
Please briefly explain why you feel this user should be reported.
I search a lot in Google and Stackoverflow about web application security in Java but I can not understand which one is best pattern for my web application.
I want to use JSP/Servlet and my web server is Tomcat .
Web application security is very important for us but I really did not know what I have to ? or What is the Best way ?!
I studied about Tomcat Realm , Acegi , Spring Security …..
Thank you.
If you are using Spring go with Spring Security(Acegi is old version of Spring security). If not use Shiro.I am not in favor of tomcat realm because of server dependency and unit testing.