Win a copy of Learn Spring Security (video course) this week in the Spring forum!
  • Post Reply
  • Bookmark Topic Watch Topic
  • New Topic

Spring 3 & openID integration

 
Kuladip Yadav
Ranch Hand
Posts: 162
Hibernate Java Spring
  • Mark post as helpful
  • send pies
  • Quote
  • Report post to moderator
Hi Peter,

Does the spring 3 security provide special API for openID authentication ?
Do you have separate chapter for this ?

I have used openID authentication using openid4java libraries.
But if spring 3 provides integration of openID authentication support then it's great

Any pointers/examples appreciated.

Thanks
 
Peter Mularien
Author
Ranch Hand
Posts: 84
  • Mark post as helpful
  • send pies
  • Quote
  • Report post to moderator
Hello Kuldeep,

Thank you for the excellent question! Actually, we have an entire chapter devoted to the integration of Spring Security 3 and OpenID (you may not be aware that Spr Sec 3 uses openid4java behind the scenes, which is perfect for you!).

You may actually see this full OpenID chapter (although not formatted as nicely as the book ) on the Packt web site here: Opening up to OpenID with Spring Security. This should give you a taste of the level of technical detail that I've provided on all the subjects covered in the book.

Hope this answers your question!

Best,
Peter
 
Kuladip Yadav
Ranch Hand
Posts: 162
Hibernate Java Spring
  • Mark post as helpful
  • send pies
  • Quote
  • Report post to moderator
Thanks for your reply.
And article link provided by you is very useful for openID implementation with spring security 3.

By the way, is it secure to use openID authentication for application ?
What do you think ?

Thanks
 
Peter Mularien
Author
Ranch Hand
Posts: 84
  • Mark post as helpful
  • send pies
  • Quote
  • Report post to moderator
Provided that the OpenID provider can be trusted, yes, I think it's a secure solution. I would use a more controlled access approach for highly sensitive areas of the site (admin areas, etc), however

Best,
Peter
 
Kuladip Yadav
Ranch Hand
Posts: 162
Hibernate Java Spring
  • Mark post as helpful
  • send pies
  • Quote
  • Report post to moderator
yes, totally agree with you.
For more sensitive area it's better to avoid openID

thanks for your reply.
 
  • Post Reply
  • Bookmark Topic Watch Topic
  • New Topic