Over a million developers have joined DZone.
{{announcement.body}}
{{announcement.title}}

Java EE Security Early Draft Review Starts Now!

DZone's Guide to

Java EE Security Early Draft Review Starts Now!

Anyone interested in the soon-to-be-revamped Java EE Security API should take a look and get involved. It's out for Early Draft Review, so see what is covers.

· Java Zone ·
Free Resource

Verify, standardize, and correct the Big 4 + more– name, email, phone and global addresses – try our Data Quality APIs now at Melissa Developer Portal!

The Java EE Security API just posted its first early draft review. Because of the now-accelerated Java EE 8 schedule, the rest of the steps towards finalization of the specification are going to happen very quickly.

Java EE security is one of the most anticipated changes in Java EE 8. This is the case particularly because security is one of the last areas left to be revamped in the way most other Java EE APIs, such as EJB 3, have been changed radically. As a result, Java EE security is very highly dependent on things like vendor-specific GUI console wizards, vendor-specific configuration, or command-line administrative tools. Pluggability, extensibility, and customization are also currently challenging when the security features that already come with the application server are not sufficient. This is the main reason for the existence of third-party security frameworks in server-side Java, like Shiro and Keycloak. The Java EE Security API aims to solve these important issues and promote both simplicity and portability, particularly in the cloud.

The best way to learn more about what is in the specification is looking at the specification draft itself. Another great way to get yourself familiarized is looking at the slide deck from key expert group member and my friend Rudy De Busscher (please click here if you can't see the embedded deck).

While the specification is going to be finalized soon, there are still plenty of reasons to get involved. Indeed, this has been one of the most heavily community-driven Java EE 8 specifications. Here are the many ways you can still engage (most of this comes directly from the Adopt-a-JSR page I drafted while still at Oracle):

The next step is up to you. You can be a part of the effort to simplify and improve security in server-side Java. If you have any questions, I am happy to try to help — just drop me a note any time.

Developers! Quickly and easily gain access to the tools and information you need! Explore, test and combine our data quality APIs at Melissa Developer Portal – home to tools that save time and boost revenue. Our APIs verify, standardize, and correct the Big 4 + more – name, email, phone and global addresses – to ensure accurate delivery, prevent blacklisting and identify risks in real-time.

Topics:
java ,security api ,java ee 8

Published at DZone with permission of

Opinions expressed by DZone contributors are their own.

{{ parent.title || parent.header.title}}

{{ parent.tldr }}

{{ parent.urlSource.name }}