Choosing the Authentication Type
The second page of the Configure ADF Security Wizard enables you to choose the type of authentication that the application should use. The choices are:
HTTP Basic Authentication: Browser authentication is used; the user name and password are not encrypted. This is useful for testing authentication without the need for a custom login page.
HTTP Digest Authentication: Browser authentication is used; the user name and password are encrypted, so it is more secure than basic authentication.
HTTPS Client Authentication (Public Key Certificate): This strong authentication mechanism uses a certificate and transmits over SSL.
Form-Based Authentication: The developer can specify a login page and a page to display when login fails. If you specify a page that uses ADF Faces components, you must use faces/ in the path, such as faces/login.html. If you select the Generate Default Pages check box, JDeveloper generates a login page and an error page for you.