JSP CUSTOM TAG LIBRARIES

Securing JSP tag access to Domino data
One of the strengths of a Domino database is its intricate system of security. With Domino, you can set up authentication requirements from the server-level, administered by server lists, to the document-level, administered by authors and readers fields on a form. When you build JSPs that access Domino data, you can take advantage of this powerful security model.

Server-level security

You can design your application to access a Domino server via the following modes of authentication:

1. Anonymous authentication: Logs onto the server as an anonymous user. Only accesses databases and servers that are marked to "Allow Anonymous Access." No user name or password values are required.

2. Specified user authentication: Logs onto the server as the user specified in the user attribute and verified by the password provided in the password attribute of any of the following top-level tags:


3. Container-managed authentication: Logs onto the server as a "trusted" container. You can access any database on the server, once an authentication session has been established.
Database-level security

Once you have authenticated the user to the server, you can set up conditional access to the database based on the user's:


Document-level security

Though you can encrypt and sign database fields in the Notes client, you cannot encrypt or sign document items in JSPs.

You restrict document access by creating readers and authors items that contain the names of only those users who are allowed to read or author that document. You set these item values in a JSPs by doing the following:

1. Create a single- or multi-value item using one of the following tags:

2. Set the datatype attribute of the tag to either "readers" or "authors."

3. Provide the user name or names of those people you want to give special access to the document to as the item value.

See Also