Projects / AuthenticRoast


AuthenticRoast allows you to build highly flexible authentication mechanisms for the Java Web tier. This can be anything from HTTP Basic authentication to authenticating with openid, facebook, or your company's Kerberos setup. The authentication modules can be combined at will and even changed at runtime. This currently works for glassfish and plain Tomcat, and allows you to use all the features of container-managed security without being constrained to the simple login methods provided.

Operating Systems

Recent releases

  •  17 Jan 2011 23:15

    Release Notes: Some problems when used in plain Tomcat were fixed.

    •  04 Mar 2010 15:43

      Release Notes: Authentication can now be shared between multiple contexts in the same container.

      •  15 Feb 2010 12:30

        Release Notes: Specifying the authenticator module using the context-param roast.authenticator.class now also works for Glassfish 2 and 3.

        •  03 Feb 2010 12:36

          Release Notes: The authentication module can now be specified using a context-param in the web.xml descriptor. This release also includes a few API cleanups and bugfixes.

          •  13 Oct 2008 21:07

            Release Notes: This release adds a Tomcat valve for use in plain Tomcat. It has some minor API changes.


            Project Spotlight


            A Fluent OpenStack client API for Java.


            Project Spotlight

            TurnKey TWiki Appliance

            A TWiki appliance that is easy to use and lightweight.