This presentation provides developers with a practical approach to security issues typically encountered when developing Spring-based enterprise applications, with a particular focus on Acegi Security. Ben Alex covers authentication, web request authorization, method authorization on your services layer beans, and domain object access control capabilities. The presentation briefly compares two common implementation approaches: container managed authentication (CMA) and Spring/Acegi Security. A sample web application is being used throughout the presentation to illustrate some typical security requirements of enterprise applications.
Ben then migrates this sample application from CMA to Spring/Acegi Security during the course of the presentation.
No previous experience with Spring Security is required to benefit from this presentation, although a basic understanding of CMA and configuring Spring beans would be ideal.
Comments