in this document we will show you how to use oauth for remote authentication to jboss eap. but before we jump straight into the jboss eap oauth documentation, we want to briefly cover a few other authentication mechanisms.

i mentioned above that it would be easier to explain the use of authentication than authentication. for example, you know more about the use of your server than how to set it up. similarly, you have read more about users than how to set them up. this tutorial is about those who want to use authentication in eap and are relatively familiar with how web servers work.

the previous lesson mentioned the need for a way to authenticate requests to the management interfaces on a jboss eap server. there are a number of different strategies for doing this, including: using the username and password, using a token in the header, using a token in the body, using a token in the url, using the browser client-side, using the os keychain, using a cookie, using a http digest method, using a bean, using an x.509 certificate, and using a stored secret

the previously mentioned example of using a username and password method is a common way to protect management interfaces. the username and password is then encrypted using a base64 (shown below) encoded secret before being used to access the application.

we would use the name and password method if we wanted to make sure no one could use the username or password to impersonate the user. we would also want to restrict the access to the management interfaces to people who are known to the user. we can do this by setting up our security realm to require that the username must be in a secure group in order to access the management interfaces.

