Monthly Archives: October 2010

SpringOne 2GX takeaways

Posted on October 28, 2010 by Willie Wheeler

I attended SpringOne 2GX in Chicago last week and had a good time. Great sessions and keynotes, and I got to see some people I hadn’t seen in a while, and meet some new people too. Here are some of … Continue reading →

Posted in News | Tagged alm, cache, code2cloud, environments, gemfire, gradle, html5, nosql, spring mobile, spring social, springone | 3 Comments

Quick tip: Spring Security role-based authorization and permissions

Posted on October 27, 2010 by Willie Wheeler

The problem: hardcoded role-based authorization One of the challenges around using Spring Security is that the examples—both in the documentation and on the web—tend to promote an overly-simple approach to role-based authorization, hardcoding roles in the source in a non-configurable … Continue reading →

Posted in Chapter 07 - Authorization, Quick Tips | Tagged authorization, permissions, roles, security, spring | 13 Comments

Quick tip: avoid rule duplication when using security:authorize

Posted on October 10, 2010 by Willie Wheeler

Spring Security features a tag that allows us to show or hide JSP content based on access rules we can define. Here’s an example: <security:authorize access=”hasRole(‘admin’)”> <a href=”/main/admin.html”>Admin</a> <security:authorize> This is probably the most common way to use the tag. … Continue reading →

Posted in Chapter 07 - Authorization, Quick Tips | Tagged authorization, spring, spring security | Leave a comment

Monthly Archives: October 2010

Quick tip: Spring Security role-based authorization and permissions

Quick tip: avoid rule duplication when using security:authorize

Links

RSS

Recent posts

Categories

Archives

Monthly Archives: October 2010

SpringOne 2GX takeaways

Quick tip: Spring Security role-based authorization and permissions

Quick tip: avoid rule duplication when using security:authorize

Links

RSS

Recent posts

Categories

Tags

Archives