Acegi Extensions Project
aims to provide additional capabilities to Acegi Security Framework for Spring,
such as declarative management of ACL entries, support for Acegi Security in
portal environments, constraint based security features over role based
authorization mechanism.
Acegi-portlet is
the project that brings full integration of Acegi Security with JSR-168
compliant portals. It was possible to configure and use only authentication
capabilities of Acegi in portals. Due to architectural differences between
portlets and servlets, it was not possible to employ Acegi on authorization
side of individual portlets deployed so far. With the help of acegi-portlet
project, you can now configure Acegi in your portal environment, and use its
all of authorization features, protecting portlet requests, method level, and
domain instance level security in your portlets individually.
Acegi-acl-management
tries to ease management of ACL entries, created, updated or deleted during
manipulation of their corresponding domain objects. Acegi Security Framework
provides ways to manage those entries, but it is on DAO level. This project
provides higher level of mechanism for developers to declare on their service
methods what ACL entries are to be created or deleted when a domain object of a
related type is processed. Then its AOP based interceptor does the job.
o
Declarative Management of ACL Entries
We provide two
sample projects to illustrate how to configure and use acegi-portlet in your
portlet web applications. Samples include use of acegi-acl-management as well.
They are developed for Liferay and JBoss portals specifically as we currently
have applied our solution only to those two portals. However, our solution is
applicable to any JSR-168 compliant portal. You are welcomed to adapt it to
your favorite portal environment.