File APIs for Java Developers
Manipulate DOC, XLS, PPT, PDF and many others from your application.
The moose likes Security and the fly likes looking for a tutotiral regarding security management Big Moose Saloon
  Search | Java FAQ | Recent Topics | Flagged Topics | Hot Topics | Zero Replies
Register / Login

Win a copy of Java Interview Guide this week in the Jobs Discussion forum!
JavaRanch » Java Forums » Engineering » Security
Bookmark "looking for a tutotiral regarding security management " Watch "looking for a tutotiral regarding security management " New topic

looking for a tutotiral regarding security management

Peter Primrose
Ranch Hand

Joined: Sep 10, 2004
Posts: 755
Hi there,

can anyone advise on any tutorial for 'security-management' in terms of users/permissions/subject/groups/roles etc?

I'm fairly new to this subject and wonder where to start. I read about JAAS but it had so much irrelevant info to security-management that I was overwhelmed.

I have a struts application in which I want to give user permission, to view some record and to provide flexibility to 'admin' to assign roles.

Thank you!
Ulf Dittmer

Joined: Mar 22, 2005
Posts: 42965
JAAS is a general-purpose framework that's often overkill, especially for web apps that provide a mechanism based on users/roles/permissions define din the servlet spec.

The has some pointers on this in the "How do I implement security for my web application ?" section (it's applicable to other servlet containers as well).
mo sayed
Ranch Hand

Joined: Jan 25, 2006
Posts: 88
Have you had a look at acegi?
I'm currently hooking it up to a struts based application. The learning curve is steep but manageable. However it takes care of a lot of things you have
to consider when wrapping a security layer around a web app.

ps- If you do pursue the acegi approach, have a look at Spring in Action book by Craig Walls. It has a good chapter on it
[ February 20, 2008: Message edited by: mo sayed ]

<a href="" rel="nofollow">grails</a>
jeff rusty
Ranch Hand

Joined: Nov 07, 2006
Posts: 109
Hi ,
How to integrate Struts with ACEGI for authentication and Authorization?
Is it possible to integrate ACEGI with Struts1.2?
Please help.

I agree. Here's the link:
subject: looking for a tutotiral regarding security management
It's not a secret anymore!