DZone
Thanks for visiting DZone today,
Edit Profile
  • Manage Email Subscriptions
  • How to Post to DZone
  • Article Submission Guidelines
Sign Out View Profile
  • Post an Article
  • Manage My Drafts
Over 2 million developers have joined DZone.
Log In / Join
Refcards Trend Reports Events Over 2 million developers have joined DZone. Join Today! Thanks for visiting DZone today,
Edit Profile Manage Email Subscriptions Moderation Admin Console How to Post to DZone Article Submission Guidelines
View Profile
Sign Out
Refcards
Trend Reports
Events
Zones
Culture and Methodologies Agile Career Development Methodologies Team Management
Data Engineering AI/ML Big Data Data Databases IoT
Software Design and Architecture Cloud Architecture Containers Integration Microservices Performance Security
Coding Frameworks Java JavaScript Languages Tools
Testing, Deployment, and Maintenance Deployment DevOps and CI/CD Maintenance Monitoring and Observability Testing, Tools, and Frameworks
Culture and Methodologies
Agile Career Development Methodologies Team Management
Data Engineering
AI/ML Big Data Data Databases IoT
Software Design and Architecture
Cloud Architecture Containers Integration Microservices Performance Security
Coding
Frameworks Java JavaScript Languages Tools
Testing, Deployment, and Maintenance
Deployment DevOps and CI/CD Maintenance Monitoring and Observability Testing, Tools, and Frameworks
  1. DZone
  2. Coding
  3. Java
  4. Java EE Security Early Draft Review Starts Now!

Java EE Security Early Draft Review Starts Now!

Anyone interested in the soon-to-be-revamped Java EE Security API should take a look and get involved. It's out for Early Draft Review, so see what is covers.

Reza Rahman user avatar by
Reza Rahman
CORE ·
Mar. 18, 17 · News
Like (8)
Save
Tweet
Share
10.81K Views

Join the DZone community and get the full member experience.

Join For Free

The Java EE Security API just posted its first early draft review. Because of the now-accelerated Java EE 8 schedule, the rest of the steps towards finalization of the specification are going to happen very quickly.

Java EE security is one of the most anticipated changes in Java EE 8. This is the case particularly because security is one of the last areas left to be revamped in the way most other Java EE APIs, such as EJB 3, have been changed radically. As a result, Java EE security is very highly dependent on things like vendor-specific GUI console wizards, vendor-specific configuration, or command-line administrative tools. Pluggability, extensibility, and customization are also currently challenging when the security features that already come with the application server are not sufficient. This is the main reason for the existence of third-party security frameworks in server-side Java, like Shiro and Keycloak. The Java EE Security API aims to solve these important issues and promote both simplicity and portability, particularly in the cloud.

The best way to learn more about what is in the specification is looking at the specification draft itself. Another great way to get yourself familiarized is looking at the slide deck from key expert group member and my friend Rudy De Busscher (please click here if you can't see the embedded deck).

What is tackled in the Java EE Security API (Java EE 8) from Rudy De Busscher

While the specification is going to be finalized soon, there are still plenty of reasons to get involved. Indeed, this has been one of the most heavily community-driven Java EE 8 specifications. Here are the many ways you can still engage (most of this comes directly from the Adopt-a-JSR page I drafted while still at Oracle):

  • You can still join the specification itself as an expert or a contributor. You can do that via the JCP page for the specification.
  • You can have your JUG officially support the standard through Adopt-a-JSR.
  • You can simply join the discussion without any ceremony by subscribing to the Java EE Security API specification user alias.
  • You can share ideas and feedback, possibly by entering issues in the public issue tracker.
  • You can read the draft specification now.
  • You can try out the reference implementation now.
  • You can write or speak about the API now.
  • You can encourage others to participate.

The next step is up to you. You can be a part of the effort to simplify and improve security in server-side Java. If you have any questions, I am happy to try to help — just drop me a note any time.

Java EE Java (programming language) security

Published at DZone with permission of Reza Rahman, DZone MVB. See the original article here.

Opinions expressed by DZone contributors are their own.

Popular on DZone

  • Handling Virtual Threads
  • Memory Debugging: A Deep Level of Insight
  • Getting Started With JMS-ActiveMQ: Explained in a Simple Way
  • How to Configure AWS Glue Job Using Python-Based AWS CDK

Comments

Partner Resources

X

ABOUT US

  • About DZone
  • Send feedback
  • Careers
  • Sitemap

ADVERTISE

  • Advertise with DZone

CONTRIBUTE ON DZONE

  • Article Submission Guidelines
  • Become a Contributor
  • Visit the Writers' Zone

LEGAL

  • Terms of Service
  • Privacy Policy

CONTACT US

  • 600 Park Offices Drive
  • Suite 300
  • Durham, NC 27709
  • support@dzone.com
  • +1 (919) 678-0300

Let's be friends: