Re: Wicket Security Question
Thanks for the update.. 2009/2/27 Wayne Pope waynemailingli...@googlemail.com Hi, In terms of SWARM etc its in the pre-generics stage. It didn't take much to get it working with the latest wicket version mind. It works fine, however it wan't what we needed in the end - we went with the wicket.aurthorization package and rolled our own dynamic acl-list/roles etc. I had some promising converstions with Les Hazlewood from jsecurity.org - that looks like another great package and more flexible IMO. However Les was right in the middle of a move to NYC and didn't have anytime to spend on doing a wicket version of jsecurity. It might be worth pinging him a mail and see if he up for doing it again. Wayne www.glasscubes.com On Thu, Feb 26, 2009 at 8:09 PM, Nino Martinez nino.martinez.w...@gmail.com wrote: I might pick it up (But since it's not something I need right now, it has low priority).. But was hoping that Wayne Pope would get back and tell whats state it is in.. Philippe Laflamme wrote: FYI: it's not clear what will happen with the wicket-security package. The original maintainer sadly passed away last year and no-one has officially taken the torch. We've used both packages (auth-roles and swarm), but neither with spring-security. We'd like to move to using spring-security using Swarm, but we haven't taken any step in this regard due to the package's situation... Hoping the package gets an official maintainer soon. Philippe Markus Strickler wrote: Hi- http://wicketstuff.org/confluence/display/STUFFWIKI/Security+Framework+Comparison might be of interest. I've been using Auth-roles together with ACEGI in a project and it worked quite well. -markus Am 25.02.2009 um 21:23 schrieb M Goodell: I would like to pose a question. We are looking at using Wicket as a platform for an upcoming project. So far we are *really* liking what Wicket brings to the table. In terms of security / securing a web application our first thought was Spring Security. My question: Does Spring Security play nice with Wicket and is it a viable addition to a Wicket Application? Or, what are other alternatives are available for use to investigate. Thank you in advance for any thoughts, comments and suggestions. M. Goodell -- This message has been scanned for viruses and dangerous content by MailScanner, and is believed to be clean. -- This message has been scanned for viruses and dangerous content by MailScanner, and is believed to be clean. - To unsubscribe, e-mail: users-unsubscr...@wicket.apache.org For additional commands, e-mail: users-h...@wicket.apache.org - To unsubscribe, e-mail: users-unsubscr...@wicket.apache.org For additional commands, e-mail: users-h...@wicket.apache.org - To unsubscribe, e-mail: users-unsubscr...@wicket.apache.org For additional commands, e-mail: users-h...@wicket.apache.org
Re: Wicket Security Question
I created a google-code project for Wicket-JSecurity integration, but unfortunately haven't had time to work on it. Les has already done some commits though. http://code.google.com/p/wicket-jsecurity/ Any help is welcome. regards, Maarten On Fri, Feb 27, 2009 at 8:31 AM, Wayne Pope waynemailingli...@googlemail.com wrote: Hi, In terms of SWARM etc its in the pre-generics stage. It didn't take much to get it working with the latest wicket version mind. It works fine, however it wan't what we needed in the end - we went with the wicket.aurthorization package and rolled our own dynamic acl-list/roles etc. I had some promising converstions with Les Hazlewood from jsecurity.org - that looks like another great package and more flexible IMO. However Les was right in the middle of a move to NYC and didn't have anytime to spend on doing a wicket version of jsecurity. It might be worth pinging him a mail and see if he up for doing it again. Wayne www.glasscubes.com On Thu, Feb 26, 2009 at 8:09 PM, Nino Martinez nino.martinez.w...@gmail.com wrote: I might pick it up (But since it's not something I need right now, it has low priority).. But was hoping that Wayne Pope would get back and tell whats state it is in.. Philippe Laflamme wrote: FYI: it's not clear what will happen with the wicket-security package. The original maintainer sadly passed away last year and no-one has officially taken the torch. We've used both packages (auth-roles and swarm), but neither with spring-security. We'd like to move to using spring-security using Swarm, but we haven't taken any step in this regard due to the package's situation... Hoping the package gets an official maintainer soon. Philippe Markus Strickler wrote: Hi- http://wicketstuff.org/confluence/display/STUFFWIKI/Security+Framework+Comparison might be of interest. I've been using Auth-roles together with ACEGI in a project and it worked quite well. -markus Am 25.02.2009 um 21:23 schrieb M Goodell: I would like to pose a question. We are looking at using Wicket as a platform for an upcoming project. So far we are *really* liking what Wicket brings to the table. In terms of security / securing a web application our first thought was Spring Security. My question: Does Spring Security play nice with Wicket and is it a viable addition to a Wicket Application? Or, what are other alternatives are available for use to investigate. Thank you in advance for any thoughts, comments and suggestions. M. Goodell -- This message has been scanned for viruses and dangerous content by MailScanner, and is believed to be clean. -- This message has been scanned for viruses and dangerous content by MailScanner, and is believed to be clean. - To unsubscribe, e-mail: users-unsubscr...@wicket.apache.org For additional commands, e-mail: users-h...@wicket.apache.org - To unsubscribe, e-mail: users-unsubscr...@wicket.apache.org For additional commands, e-mail: users-h...@wicket.apache.org - To unsubscribe, e-mail: users-unsubscr...@wicket.apache.org For additional commands, e-mail: users-h...@wicket.apache.org
Re: Wicket Security Question
Ahh ok, Just wrote Les... 2009/2/27 Maarten Bosteels mbosteels@gmail.com I created a google-code project for Wicket-JSecurity integration, but unfortunately haven't had time to work on it. Les has already done some commits though. http://code.google.com/p/wicket-jsecurity/ Any help is welcome. regards, Maarten On Fri, Feb 27, 2009 at 8:31 AM, Wayne Pope waynemailingli...@googlemail.com wrote: Hi, In terms of SWARM etc its in the pre-generics stage. It didn't take much to get it working with the latest wicket version mind. It works fine, however it wan't what we needed in the end - we went with the wicket.aurthorization package and rolled our own dynamic acl-list/roles etc. I had some promising converstions with Les Hazlewood from jsecurity.org - that looks like another great package and more flexible IMO. However Les was right in the middle of a move to NYC and didn't have anytime to spend on doing a wicket version of jsecurity. It might be worth pinging him a mail and see if he up for doing it again. Wayne www.glasscubes.com On Thu, Feb 26, 2009 at 8:09 PM, Nino Martinez nino.martinez.w...@gmail.com wrote: I might pick it up (But since it's not something I need right now, it has low priority).. But was hoping that Wayne Pope would get back and tell whats state it is in.. Philippe Laflamme wrote: FYI: it's not clear what will happen with the wicket-security package. The original maintainer sadly passed away last year and no-one has officially taken the torch. We've used both packages (auth-roles and swarm), but neither with spring-security. We'd like to move to using spring-security using Swarm, but we haven't taken any step in this regard due to the package's situation... Hoping the package gets an official maintainer soon. Philippe Markus Strickler wrote: Hi- http://wicketstuff.org/confluence/display/STUFFWIKI/Security+Framework+Comparison might be of interest. I've been using Auth-roles together with ACEGI in a project and it worked quite well. -markus Am 25.02.2009 um 21:23 schrieb M Goodell: I would like to pose a question. We are looking at using Wicket as a platform for an upcoming project. So far we are *really* liking what Wicket brings to the table. In terms of security / securing a web application our first thought was Spring Security. My question: Does Spring Security play nice with Wicket and is it a viable addition to a Wicket Application? Or, what are other alternatives are available for use to investigate. Thank you in advance for any thoughts, comments and suggestions. M. Goodell -- This message has been scanned for viruses and dangerous content by MailScanner, and is believed to be clean. -- This message has been scanned for viruses and dangerous content by MailScanner, and is believed to be clean. - To unsubscribe, e-mail: users-unsubscr...@wicket.apache.org For additional commands, e-mail: users-h...@wicket.apache.org - To unsubscribe, e-mail: users-unsubscr...@wicket.apache.org For additional commands, e-mail: users-h...@wicket.apache.org - To unsubscribe, e-mail: users-unsubscr...@wicket.apache.org For additional commands, e-mail: users-h...@wicket.apache.org
Re: Wicket Security Question
Yep, I've been playing around with integration and will use it in a production deployment soon. So far, so good. I'm open to any feedback. I'm particularly happy with the PageStore implementation to use JSecurity's enterprise session management in a distributed environment - I needed to write it to support the case where Session objects did not reside in the same JVM where Wicket was executing. I would also think JSecurity would be a better fit for Wicket as a whole since it does not require Spring. It integrates beautifully with Spring if desired, it is just not a requirement... Cheers, Les On Fri, Feb 27, 2009 at 4:36 AM, nino martinez wael nino.martinez.w...@gmail.com wrote: Ahh ok, Just wrote Les... 2009/2/27 Maarten Bosteels mbosteels@gmail.com I created a google-code project for Wicket-JSecurity integration, but unfortunately haven't had time to work on it. Les has already done some commits though. http://code.google.com/p/wicket-jsecurity/ Any help is welcome. regards, Maarten On Fri, Feb 27, 2009 at 8:31 AM, Wayne Pope waynemailingli...@googlemail.com wrote: Hi, In terms of SWARM etc its in the pre-generics stage. It didn't take much to get it working with the latest wicket version mind. It works fine, however it wan't what we needed in the end - we went with the wicket.aurthorization package and rolled our own dynamic acl-list/roles etc. I had some promising converstions with Les Hazlewood from jsecurity.org - that looks like another great package and more flexible IMO. However Les was right in the middle of a move to NYC and didn't have anytime to spend on doing a wicket version of jsecurity. It might be worth pinging him a mail and see if he up for doing it again. Wayne www.glasscubes.com On Thu, Feb 26, 2009 at 8:09 PM, Nino Martinez nino.martinez.w...@gmail.com wrote: I might pick it up (But since it's not something I need right now, it has low priority).. But was hoping that Wayne Pope would get back and tell whats state it is in.. Philippe Laflamme wrote: FYI: it's not clear what will happen with the wicket-security package. The original maintainer sadly passed away last year and no-one has officially taken the torch. We've used both packages (auth-roles and swarm), but neither with spring-security. We'd like to move to using spring-security using Swarm, but we haven't taken any step in this regard due to the package's situation... Hoping the package gets an official maintainer soon. Philippe Markus Strickler wrote: Hi- http://wicketstuff.org/confluence/display/STUFFWIKI/Security+Framework+Comparison might be of interest. I've been using Auth-roles together with ACEGI in a project and it worked quite well. -markus Am 25.02.2009 um 21:23 schrieb M Goodell: I would like to pose a question. We are looking at using Wicket as a platform for an upcoming project. So far we are *really* liking what Wicket brings to the table. In terms of security / securing a web application our first thought was Spring Security. My question: Does Spring Security play nice with Wicket and is it a viable addition to a Wicket Application? Or, what are other alternatives are available for use to investigate. Thank you in advance for any thoughts, comments and suggestions. M. Goodell -- This message has been scanned for viruses and dangerous content by MailScanner, and is believed to be clean. -- This message has been scanned for viruses and dangerous content by MailScanner, and is believed to be clean. - To unsubscribe, e-mail: users-unsubscr...@wicket.apache.org For additional commands, e-mail: users-h...@wicket.apache.org - To unsubscribe, e-mail: users-unsubscr...@wicket.apache.org For additional commands, e-mail: users-h...@wicket.apache.org - To unsubscribe, e-mail: users-unsubscr...@wicket.apache.org For additional commands, e-mail: users-h...@wicket.apache.org
Re: Wicket Security Question
FYI: it's not clear what will happen with the wicket-security package. The original maintainer sadly passed away last year and no-one has officially taken the torch. We've used both packages (auth-roles and swarm), but neither with spring-security. We'd like to move to using spring-security using Swarm, but we haven't taken any step in this regard due to the package's situation... Hoping the package gets an official maintainer soon. Philippe Markus Strickler wrote: Hi- http://wicketstuff.org/confluence/display/STUFFWIKI/Security+Framework+Comparison might be of interest. I've been using Auth-roles together with ACEGI in a project and it worked quite well. -markus Am 25.02.2009 um 21:23 schrieb M Goodell: I would like to pose a question. We are looking at using Wicket as a platform for an upcoming project. So far we are *really* liking what Wicket brings to the table. In terms of security / securing a web application our first thought was Spring Security. My question: Does Spring Security play nice with Wicket and is it a viable addition to a Wicket Application? Or, what are other alternatives are available for use to investigate. Thank you in advance for any thoughts, comments and suggestions. M. Goodell -- This message has been scanned for viruses and dangerous content by MailScanner, and is believed to be clean. -- This message has been scanned for viruses and dangerous content by MailScanner, and is believed to be clean. - To unsubscribe, e-mail: users-unsubscr...@wicket.apache.org For additional commands, e-mail: users-h...@wicket.apache.org -- View this message in context: http://www.nabble.com/Wicket-Security-Question-tp22210992p8410.html Sent from the Wicket - User mailing list archive at Nabble.com. - To unsubscribe, e-mail: users-unsubscr...@wicket.apache.org For additional commands, e-mail: users-h...@wicket.apache.org
Re: Wicket Security Question
I might pick it up (But since it's not something I need right now, it has low priority).. But was hoping that Wayne Pope would get back and tell whats state it is in.. Philippe Laflamme wrote: FYI: it's not clear what will happen with the wicket-security package. The original maintainer sadly passed away last year and no-one has officially taken the torch. We've used both packages (auth-roles and swarm), but neither with spring-security. We'd like to move to using spring-security using Swarm, but we haven't taken any step in this regard due to the package's situation... Hoping the package gets an official maintainer soon. Philippe Markus Strickler wrote: Hi- http://wicketstuff.org/confluence/display/STUFFWIKI/Security+Framework+Comparison might be of interest. I've been using Auth-roles together with ACEGI in a project and it worked quite well. -markus Am 25.02.2009 um 21:23 schrieb M Goodell: I would like to pose a question. We are looking at using Wicket as a platform for an upcoming project. So far we are *really* liking what Wicket brings to the table. In terms of security / securing a web application our first thought was Spring Security. My question: Does Spring Security play nice with Wicket and is it a viable addition to a Wicket Application? Or, what are other alternatives are available for use to investigate. Thank you in advance for any thoughts, comments and suggestions. M. Goodell -- This message has been scanned for viruses and dangerous content by MailScanner, and is believed to be clean. -- This message has been scanned for viruses and dangerous content by MailScanner, and is believed to be clean. - To unsubscribe, e-mail: users-unsubscr...@wicket.apache.org For additional commands, e-mail: users-h...@wicket.apache.org - To unsubscribe, e-mail: users-unsubscr...@wicket.apache.org For additional commands, e-mail: users-h...@wicket.apache.org
Re: Wicket Security Question
Hi, In terms of SWARM etc its in the pre-generics stage. It didn't take much to get it working with the latest wicket version mind. It works fine, however it wan't what we needed in the end - we went with the wicket.aurthorization package and rolled our own dynamic acl-list/roles etc. I had some promising converstions with Les Hazlewood from jsecurity.org - that looks like another great package and more flexible IMO. However Les was right in the middle of a move to NYC and didn't have anytime to spend on doing a wicket version of jsecurity. It might be worth pinging him a mail and see if he up for doing it again. Wayne www.glasscubes.com On Thu, Feb 26, 2009 at 8:09 PM, Nino Martinez nino.martinez.w...@gmail.com wrote: I might pick it up (But since it's not something I need right now, it has low priority).. But was hoping that Wayne Pope would get back and tell whats state it is in.. Philippe Laflamme wrote: FYI: it's not clear what will happen with the wicket-security package. The original maintainer sadly passed away last year and no-one has officially taken the torch. We've used both packages (auth-roles and swarm), but neither with spring-security. We'd like to move to using spring-security using Swarm, but we haven't taken any step in this regard due to the package's situation... Hoping the package gets an official maintainer soon. Philippe Markus Strickler wrote: Hi- http://wicketstuff.org/confluence/display/STUFFWIKI/Security+Framework+Comparison might be of interest. I've been using Auth-roles together with ACEGI in a project and it worked quite well. -markus Am 25.02.2009 um 21:23 schrieb M Goodell: I would like to pose a question. We are looking at using Wicket as a platform for an upcoming project. So far we are *really* liking what Wicket brings to the table. In terms of security / securing a web application our first thought was Spring Security. My question: Does Spring Security play nice with Wicket and is it a viable addition to a Wicket Application? Or, what are other alternatives are available for use to investigate. Thank you in advance for any thoughts, comments and suggestions. M. Goodell -- This message has been scanned for viruses and dangerous content by MailScanner, and is believed to be clean. -- This message has been scanned for viruses and dangerous content by MailScanner, and is believed to be clean. - To unsubscribe, e-mail: users-unsubscr...@wicket.apache.org For additional commands, e-mail: users-h...@wicket.apache.org - To unsubscribe, e-mail: users-unsubscr...@wicket.apache.org For additional commands, e-mail: users-h...@wicket.apache.org - To unsubscribe, e-mail: users-unsubscr...@wicket.apache.org For additional commands, e-mail: users-h...@wicket.apache.org
Re: Wicket Security Question
Hi- http://wicketstuff.org/confluence/display/STUFFWIKI/Security+Framework+Comparison might be of interest. I've been using Auth-roles together with ACEGI in a project and it worked quite well. -markus Am 25.02.2009 um 21:23 schrieb M Goodell: I would like to pose a question. We are looking at using Wicket as a platform for an upcoming project. So far we are *really* liking what Wicket brings to the table. In terms of security / securing a web application our first thought was Spring Security. My question: Does Spring Security play nice with Wicket and is it a viable addition to a Wicket Application? Or, what are other alternatives are available for use to investigate. Thank you in advance for any thoughts, comments and suggestions. M. Goodell -- This message has been scanned for viruses and dangerous content by MailScanner, and is believed to be clean. -- This message has been scanned for viruses and dangerous content by MailScanner, and is believed to be clean. - To unsubscribe, e-mail: users-unsubscr...@wicket.apache.org For additional commands, e-mail: users-h...@wicket.apache.org