If Deltaspike desires to provide integration with shiro, make it as an independent sub module of security. Similar to the independence of the IDM component. Security is too large to reside as a single module.
On Jul 25, 2012, at 4:45 PM, Romain Manni-Bucau <[email protected]> wrote: > +1 > > - Romain > > > 2012/7/25 Gerhard Petracek <[email protected]> > >> hi @ all, >> >> if there are objections, we have to finish the discussion before we >> continue with it or we start a vote about it. >> >> regards, >> gerhard >> >> >> >> 2012/7/12 Jean-Louis MONTEIRO <[email protected]> >> >>> Yes, fully agree. >>> I don't see any good reason to create a new framework. >>> >>> Shiro, which is also in Apache is really great. >>> They seem really interested in integrating CDI and they plan to do so. >>> >>> There is some interesting posts. >>> >>> >> http://shiro-developer.582600.n2.nabble.com/CDI-and-WSS4J-integration-tp7577503.html >>> >>> >> http://shiro-developer.582600.n2.nabble.com/Security-in-DeltaSpike-tp7577514.html >>> >>> Jean-Louis >>> >>> >>> 2012/7/12 Mehdi Heidarzadeh <[email protected]> >>> >>>>> Rather than marry into one security framework (Shiro), Deltaspike >>> should >>>>> enable all security frameworks to provide integration. That includes a >>> DS >>>>> integration from Shiro. >>>> +1 >>>> >>>>> Agree. If DS can provide a layer to support different existing >> security >>>>> frameworks (Shiro, Spring Security, ...) with perhaps JAAS modules >>> (LDAP, >>>>> JDBC, PropertiesFile, EncryptedPropertiesFile, ...) top of CDI, that >>>> should >>>>> be fine >>>> +1 >>>> >>>> With a good provided security integration api in DS, anyone interested >> in >>>> any of those security frameworks will be able to use DS and that sounds >>>> very nice and elegant. >>>> -- >>>> Mehdi Heidarzadeh Ardalani >>>> Independent JEE Consultant, Architect and Developer. >>>> http://www.TheBigJavaBlog.com >>>> >>> >>
