What does the Identity Asserter do in a J2EE framework?

What does the Identity Asserter do in a J2EE framework?

What does the Identity Asserter do in a J2EE framework?

A.
It informs the container of the client identity of an inbound request.

B.
It Inserts identity into Web Service credentials used for outbound service requests.

C.
It determines a user’s identity based on a given set of security roles and asserts it to the
container.

D.
It resolves Identity conflicts when multiple LDAPs are used.

Explanation:
Like the Authenticator, theIdentity Assertersecurity provider uses Oracle Access
Manager authentication services to validate already-authenticated Oracle Access Manager users
using the ObSSOCookie and to create a WebLogic-authenticated session.
Note: If authentication is successful, the identity asserter creates a Subject, which is used to
identify the user. Actions performed by the user will be associated with the Subject so
that the caller’s identity will be known. If outbound requests are made by the business
logic, identity can be included by the container based on the Subject.



Leave a Reply 0

Your email address will not be published. Required fields are marked *