WebSocket have a secure protocol, just like HTTP has HTTPS, the WebSocket protocol has WSS. The protocol itself does not handle authentication, instead normal application authentication mechanisms apply, such as cookies, HTTP Authentication or TLS authentication. These concerns are implemented by the servlet container.
- Securing websocket endpoints is conceptually no different…to securing a webpage in the sense that there are two parts…to ensuring your site and information is secured.…The first part is authentication and authorization.…This involves providing a challenge for a username…and password then validating that the username and password…were entered correctly and checking that the user role…is allowed to access the resource.…The second part is encryption.…This is implemented by enabling TLS.…Typically, this is done via the HTTPS protocol for webpages,…but for websockets we have WSS.…
The manner in which the websocket API ensures security…is to rely on the containers and security model.…The objective in this design is to make…it simpler for developers.…A websocket which is mapped to a URI like this will…be protected by the same mechanism that protects the…HTTP URI with the same host name, port, and path like this.…In a Java Enterprise application, you do this by…configuring security in your deployment descriptor,…
Join Alex Theedom as he guides you through the lifecycle of a WebSocket connection, and discusses the Java EE WebSocket programming methodologies: annotation and programmatic. He shows how to secure and encrypt WebSocket endpoints and use simple techniques to test their implementation. In addition, he explains how to integrate the JSON-processing API and build a front-end and server based WebSocket client.
- WebSocket usage
- WebSocket lifecycle and topology
- WebSocket front end and back end
- WebSocket methodologies
- Annotation methodology and programmatic methodology
- Coding a client API
- Using the JSON Processing API
- Coding the encoder and decoder
- Building the front end
- Testing WebSocket endpoints
Skill Level Intermediate
Java Platforms Compared: SE vs EE vs MEwith Peggy Fisher25m 38s Intermediate
1. Introduction to WebSocket
2. WebSockets Front End and Back End
3. Project Application and Structure
4. Java EE WebSocket API
5. Messages and Encoding
6. Build Web Front End
7. WebSocket Security
8. Testing WebSocket Endpoints
Next steps1m 37s
- Mark as unwatched
- Mark all as unwatched
Are you sure you want to mark all the videos in this course as unwatched?
This will not affect your course history, your reports, or your certificates of completion for this course.Cancel
Take notes with your new membership!
Type in the entry box, then click Enter to save your note.
1:30Press on any video thumbnail to jump immediately to the timecode shown.
Notes are saved with you account but can also be exported as plain text, MS Word, PDF, Google Doc, or Evernote.