Spring Security
-
Enterprise Java
Stateless Session for multi-tenant application using Spring Security
Once upon a time, I published one article explaining the principle to build Stateless Session. Coincidentally, we are working on…
Read More » -
Enterprise Java
Secure REST services using Spring Security
Overview Recently, I was working on a project which uses a REST services layer to communicate with the client application…
Read More » -
Enterprise Java
Spring Security Misconfiguration
I recently saw Mike Wienser’s SpringOne2GX talk about Application Security Pitfalls. It is very informative and worth watching if you…
Read More » -
Enterprise Java
CSRF protection in Spring MVC, Thymeleaf, Spring Security application
Cross-Site Request Forgery (CSRF) is an attack which forces an end user to execute unwanted actions on a web application…
Read More » -
Enterprise Java
Spring from the Trenches: Invoking a Secured Method from a Scheduled Job
Let’s assume that we have implemented a Spring powered application, and secured it by using the method security expressions of…
Read More » -
Enterprise Java
Spring Security – Behind the scenes
Security tasks such as authentication of user and authorization of a user to view application resources are usually handled by…
Read More » -
Groovy
Getting Started with method security in Grails using Spring Security
This blog post will be about implementing method level security with security expressions in Grails using the Spring Security plugins.…
Read More » -
Groovy
Grails: Calling bean methods in Spring Security expressions
Some days ago while working on a Grails application I was in a situation where a wanted to call a…
Read More » -
Enterprise Java
su and sudo in Spring Security applications
Long time ago I worked on a project that had a quite powerful feature. There were two roles: user and…
Read More »
