Hi, The Problem is that GraniteDS has to be Aware of Spring Secutiry or there must be some component syncing the security contexts. With BlazeDS for example the spring-integration module extends BlazeDS with all that is needed for this. I don't know if there is something similar available for GraniteDS (But I would be expecting this to be the case) or how it works. Have a look at this document: http://www.granitedataservices.com/public/docs/2.3.0/docs/reference/en-US/html/graniteds.spring.html#spring.rosecurity
Chris ________________________________________ Von: Massimo Perani <[email protected]> Gesendet: Freitag, 31. Januar 2014 11:11 An: [email protected] Betreff: How to securing Apache Flex / GraniteDS Apps with Spring security Hi all, I built a Flex app (mobile & desktop) that calls a backend built in Spring and use GraniteDS to expose services. Now I'm trying to secure my services with Spring Security but I can't find a good example about it. I already exposed my services to other external application with SpringMVC (rest/json) there I used spring security with custom filter to check for a token in http header, but I can't use the same filter with GraniteDS servlet because from client side (Flex app) I can't set parameters into http header with GraniteDS... Can you give some advice about with type of authentication (basic, digest, custom...) to use and give me some good tutorial about securing Apache Flex application with GraniteDS? Thanks so much. Massimo
