I developed an webapp about a year ago, using struts 2 and a security package called (at the time) jsecurity. Since then, jsecurity has become an apache project and has been renamed Apache Ki/Shiro. I guess that there was a naming conflict with the "Ki" name, so it is now called Apache Shiro (as of very recently). http://www.jsecurity.org/ (old independent website) http://incubator.apache.org/ki/ (apache website - probably soon to be renamed shiro)
Naming issues aside, this was an excellent security package providing authentication and authorization that was pretty easy to learn, flexible, and very powerful. The support that I received from the project's founders was second to none (Thanks Les & Jeremy!). One of my colleagues here at KU, Bruce Phillips, has also posted some tutorials (linked to from the apache website) to get you started. You should really check into it. Todd Kofford tkoff...@ku.edu University of Kansas - IT -----Original Message----- From: aum strut [mailto:aum.str...@gmail.com] Sent: Friday, June 19, 2009 2:20 AM To: Struts Users Mailing List Subject: Struts2 and Security Hi All, We are on the way to develop a new application using struts2. Currently we are analysing the area of authentication and authorization, we do have some options of using the following frame work for these 1) Acegi 2)JAAS my point is that we any one in the list is using any of the security frame work.please let me know about there experiences, so that it will help us in choosing the right security model. regarding the pltfrom we have decided to use is as follows 1) Struts2 2) JSP/Velocity 3) Hibernate 4) YUI these are the core building block rest technologies and frame work can be choosen as required looking forward for your valuable suggestions. thannks in advance aum --------------------------------------------------------------------- To unsubscribe, e-mail: user-unsubscr...@struts.apache.org For additional commands, e-mail: user-h...@struts.apache.org
