Hi,
I need to register my own JACC provider to change the default security
behaviour of my application. Problem there's no standard mecanism to
register a custom provider, and moreover, vendor specific mechanisms are
incredibly difficult to use[1].
I would like to have an option to register a custom JACC provider from a
web module, just like we can already register a SAM. This could be a
workaround for [2] and would facilitate JSR375 Security Spec to provide a
more integrated solution.
This change should be done in a MR and included in Java EE 8.
Regards,
Guillermo González de Agüero.
[1]
http://arjan-tijms.omnifaces.org/2015/01/java-ee-authorization-jacc-revisited.html
[2]
https://java.net/jira/browse/SERVLET_SPEC-157