GeeCON Prague 2014*
The moose likes Struts and the fly likes Spring and declarative security Big Moose Saloon
  Search | Java FAQ | Recent Topics | Flagged Topics | Hot Topics | Zero Replies
Register / Login


JavaRanch » Java Forums » Frameworks » Struts
Bookmark "Spring and declarative security" Watch "Spring and declarative security" New topic
Author

Spring and declarative security

Karthik Guru
Ranch Hand

Joined: Mar 06, 2001
Posts: 1209
How does Spring handle this. How can i protect my pages , apply user -security (role etc) throgh Spring the way i do by declaring it in web.xml for normal web applications. Have they actually implemented their own security framework?
A brief explanation would help.
Alexandru Popescu
Ranch Hand

Joined: Jul 12, 2004
Posts: 995
Afaik there is a project dedicated to this: Acegi Security System

./pope


blog - InfoQ.com
Karthik Guru
Ranch Hand

Joined: Mar 06, 2001
Posts: 1209
So Spring security just act as a wrapper on top of that framework?. Are things like JAAS etc still valid in the Spring context?
Alexandru Popescu
Ranch Hand

Joined: Jul 12, 2004
Posts: 995
I read:

Full (but optional) container integration: The credential collection and authorization capabilities of your Servlet or EJB container can be fully utilised via included "container adapters". We currently support Catalina (Tomcat), Jetty, JBoss and Resin, with additional containers easily added.


but I am not sure this is according to JAAS.

./pope
Matt Raible
author
Ranch Hand

Joined: Jan 11, 2001
Posts: 114
Originally posted by karthik Guru:
So Spring security just act as a wrapper on top of that framework?. Are things like JAAS etc still valid in the Spring context?


Yes, the Acegi framework supports JAAS. Chapter 13 of Spring Live (next February) will cover Security and Acegi.


Matt<br /> <br />Author: <a href="http://springlive.com" target="_blank" rel="nofollow">Spring Live</a> and <a href="http://www.apress.com/book/bookDisplay.html?bID=256" target="_blank" rel="nofollow">Pro JSP</a><br />Weblogs: <a href="http://raibledesigns.com" target="_blank" rel="nofollow">Raible Designs</a> <a href="http://jroller.com/page/raible" target="_blank" rel="nofollow">Spring Live Blog</a>
Karthik Guru
Ranch Hand

Joined: Mar 06, 2001
Posts: 1209
Originally posted by Matt Raible:


Chapter 13 of Spring Live (next February) will cover Security and Acegi.


I think now am all the more able to appreciate the SourceBeat model!
Its great to have authors update on their own and also based on the feedback from the readers
 
GeeCON Prague 2014
 
subject: Spring and declarative security