Posted by yamsellem terribly early in the morning: April 18th, 2011
Authenticating users is an important part of an application. Limiting the access to resources with authorization too. Spring Security is a reference in web environment. However, it is tied to the Spring technology and the size of the library — more than 10 JAR of dependencies — may restrain its use. Moreover, its lack of integration with Guice or the recurrent deployment of an App Engine application may exclude it. This is the opportunity to take a closer look at Apache Shiro.
- Introduction to HTTP Authentication
- Shiro servlet filter
- Secure a resource
- Test integration
- Realm and Matcher for the authentication
- A powerful permission model
- Authorize with annotations
- Shiro, a true challenger
Posted by Jeroen van Wilgenburg in the early morning: December 15th, 2010
Last friday we had a techrally at Xebia. We could pick our subject: MongoDB or Websockets or Canvas. I teamed up with Albert. There also was another websockets team consisting of Mischa, Ron and Frank.
We decided to use Jetty for websockets. No particual reason to pick Jetty, we both heard it did something with websockets and in the end it was an easier solution than the other team picked (jWebSocket).
Since we only had a few hours we were in quite a hurry, but in the end it was so simple we had time to write a blog, listen to Dan North and Albert even redid everthing and more in Python. (more…)