Yes, fully agree. I don't see any good reason to create a new framework. Shiro, which is also in Apache is really great. They seem really interested in integrating CDI and they plan to do so.
There is some interesting posts. http://shiro-developer.582600.n2.nabble.com/CDI-and-WSS4J-integration-tp7577503.html http://shiro-developer.582600.n2.nabble.com/Security-in-DeltaSpike-tp7577514.html Jean-Louis 2012/7/12 Mehdi Heidarzadeh <[email protected]> > >Rather than marry into one security framework (Shiro), Deltaspike should > >enable all security frameworks to provide integration. That includes a DS > >integration from Shiro. > +1 > > >Agree. If DS can provide a layer to support different existing security > >frameworks (Shiro, Spring Security, ...) with perhaps JAAS modules (LDAP, > >JDBC, PropertiesFile, EncryptedPropertiesFile, ...) top of CDI, that > should > >be fine > +1 > > With a good provided security integration api in DS, anyone interested in > any of those security frameworks will be able to use DS and that sounds > very nice and elegant. > -- > Mehdi Heidarzadeh Ardalani > Independent JEE Consultant, Architect and Developer. > http://www.TheBigJavaBlog.com >
