Java enterprise application migration: The four pillars of success

by Brad Davis (Red Hat)

With the release of Red Hat JBoss Enterprise Application Platform 6, Red Hat successfully delivered a full JEE 6-compliant container that is both lightweight and enterprise ready. As a result, many IT leaders are actively looking to shift their application workloads away from proprietary technologies like Websphere and Weblogic to JBoss EAP.

But questions about cost, risk and starting point often stand in the way.

In response, Red Hat Consulting has developed a proven methodology, identifying four key pillars to a successful migration. Leveraging Planning, Participation, Communication, and Follow through, more and more customers are easily migrating from legacy platforms to JBoss EAP.

The Planning pillar analyzes an organization’s proprietary applications and processes. This stage elicits an understanding of the application environment, as Red Hat’s JBoss Windup tooling quickly scans applications to find and estimate migration effort for each application. Data from the Windup report allows us to group applications together and to plan for optimized parallel or repeatable migrations where appropriate. Those critical to the migration’s success from a business, development and operational standpoint are also consulted to best understand the skill sets, procedures, and timelines needed to support development, architecture, deployment, maintenance and monitoring tasks.

Continue reading “Java enterprise application migration: The four pillars of success”

Enforcing Authentication and Authorization on a JAX-WS web service using Picketlink

by Kenny Peeples (Red Hat)

Introduction

The following article describes how to enforce authentication with SAML and authorization with XACML on a JAX-WS Web Service on JBoss Enterprise Application Platform with Picketlink. I combined several articles listed in the References section to make this one demonstration. The source code is on github.

Products
JBoss Enterprise Application Platform 5.2.0
Picketlink 2.0.1
JDK 1.7
JBoss Developer Studio 6

Note: Future updates will the latest versions of EAP/Picketlink/Fuse and moving the projects to maven.

Server Project
Contains the Web Service to take the assertion out of the wsse, validate it, verify authorization and process the request. The files contained in the project are the SAML2ServerHandler.java, WSTest.java, WSTestBean.java, jboss.xml, jbossxacml-config.xml,standard-jaxws-endpoint-config.xml,xacml-policy.xml,sts-config.properties,sts-roles.properties,sts-security-domain-jboss-beans.xml,sts-users.properties. All the XML is displayed to the console.

Continue reading “Enforcing Authentication and Authorization on a JAX-WS web service using Picketlink”