Java Authentication and Authorization Service (JAAS)

The Java Authentication and Authorization Service (JAAS) is a set of application program interfaces (APIs) that can determine the identity of a user or computer attempting to run Java code and ensure that the entity has the right to execute the functions requested. In this context, authentication is the process of determining whether or not an entity is who or what it declares itself to be; authorization is the process of giving an entity permission to do, use, or obtain something. Logically, authentication precedes authorization.

The JAAS authorization process extends the security policy to specify or identify the privileges that have been granted to an entity attempting to execute a given code. JAAS is independent of other APIs or technologies that may run concurrently. New or upgraded applications and technologies can be plugged in without modification.

This was last updated in September 2006

Continue Reading About Java Authentication and Authorization Service (JAAS)

Dig Deeper on Development tools for continuous software delivery

App Architecture
Software Quality
  • How to test a predictive model

    Strategies for testing predictive models and analytics emphasize data quality, real-time testing and code redundancy, as well as ...

  • The dos and don'ts of visual testing

    The visual aspect of an application is an important part of UX. Defects can potentially result in lost sales and damaged ...

  • 3 QA testing tools to consider

    QA testers need to be able to put applications and APIs through their paces. Here are some examples of tools that can help with ...

Cloud Computing