文档介绍:1 Copyright © 2011, Oracle and/or its affiliates. All rights
reserved.
The Java Identity API (JSR 351)
Ron Monzillo
2 Copyright © 2011, Oracle and/or its affiliates. All rights
reserved.
THE FOLLOWING IS INTENDED TO OUTLINE OUR GENERAL
PRODUCT DIRECTION. IT IS INTENDED FOR INFORMATION
PURPOSES ONLY, AND MAY NOT BE INCORPORATED INTO ANY
CONTRACT. IT IS NOT MITMENT TO DELIVER ANY MATERIAL,
CODE, OR FUNCTIONALITY, AND SHOULD NOT BE RELIED UPON IN
MAKING PURCHASING DECISION. THE DEVELOPMENT, RELEASE,
AND TIMING OF ANY FEATURES OR FUNCTIONALITY DESCRIBED
FOR ORACLE'S PRODUCTS REMAINS AT THE SOLE DISCRETION OF
ORACLE.
3 Copyright © 2011, Oracle and/or its affiliates. All rights
reserved.
Ron Monzillo: @
Consulting Member of Technical Staff, Oracle Identity Management
Joined Sun Microsystems in March 1999
Java EE Platform and Servlet Security Architect
Specification Lead:
JSR 351 The Java Identity API
JSR 196 The Java Authentication SPI for Containers
JSR 115 The Java Authorization Contract for Containers
OASIS WS-Security contributor and editor of SAML Token profile
4 Copyright © 2011, Oracle and/or its affiliates. All rights
reserved.
Agenda
• Charter, Supporters, Transparency, Open Source, and Next Steps
• Problem Statement
• Proposal
• Sample Use Cases
• Summary
• Q & A
5 Copyright © 2011, Oracle and/or its affiliates. All rights
reserved.
Charter
To define application programming interfaces and identity
interaction models that facilitate and control the use of
identity by applications and in access control decisions.
6 Copyright © 2011, Oracle and/or its affiliates. All rights
reserved.
7 Copyright © 2011, Oracle and/or its affiliates. All rights
reserved.
Initial Expert Group and Supporters
Initial Expert Group*: Supporting this JSR
IBM American Express
Oracle Aspect Security
RedHat Boeing
SAP AG Ericsson AB
Please v