<skip> > Security is going to be JAAS based and that is one of the major areas > still needing work before we can get a 0.0.1 release out the door. I would > appreciate it if you would review my work so far and make some comments on > what you think. I am new to JAAS and could use the feedback. Most of the > new development with JAAS has to do with User and Group integration. We > could, also, use some help with writing policy files and documenting how > to securely configure Periodicity. > > If you would like to step up and help with JAAS integration with Turbine > Users and groups it would be a great help to the project. Any help that > you could offer would be appreciated. > > Thanks for your reply. <skip> Yes it is very interesting, I use JAAS and I think it is one of the best API added to JDK 1.4 . Simplestore was about cache or simple object storage bykey only, but it is becomes some framework for persitence, security and I have plans abaut validation. I know there area lot code this kind, and some of it is in jakarta. We must think how to reuse and integrate this code. JAAS is very good for security integration, most of projects have "user, group, role" and "some permission for some action". I will think abaut this, I want to review more jakarta code, and I think it is possible to integrate all security frameworks, to have the same authentication mechanizm and I it must not be any problems with authorization integration.
-- To unsubscribe, e-mail: <mailto:[EMAIL PROTECTED]> For additional commands, e-mail: <mailto:[EMAIL PROTECTED]>
