On Nov 5, 2007, at 9:12 AM, David Jencks wrote:
I've worked a bit on integrating Roller and Jetspeed2 into Geronimo
and one thing that quickly becomes clear is that the authorization
security requirements of these "dynamic content" applications are
almost completely unrelated to the javaee security specifications.
One small possible overlap is that the JACC spec supplies the
possibility of pluggable policies for authorization evaluation.
I wondered if people would be interested in getting together to
discuss how app servers such as geronimo and security products such
as TripleSec could support these non-javaee security requirements
and how much commonality there might be across different types of
application. I'll be at ApacheCon all week and would be happy to
talk to everyone individually or in an informal meeting.
I will be in Atlanta Thursday night and Friday morning, if you have
time Thursday night that would be great
---------------------------------------------------------------------
To unsubscribe, e-mail: [EMAIL PROTECTED]
For additional commands, e-mail: [EMAIL PROTECTED]
