Posts Tagged ‘web security’

We always want to know who is on our website, how many users are logged in and how many visitors are present. Not only is the information useful, it also looks good. :) I tried looking for pluggable solutions to track users but couldn’t find any. Having implemented spring security in a few web apps, I decided to see if there was an easy way to do this.

Thursday, February 19th, 2009 at 13:27 | 14 comments
Categories: Spring Security

Question like this one popup on the spring security forum all the time. The question is almost always the same. The system must perform some custom action after a user logs in or out of the system. And almost always this action has to be performed on the session like setting an attribute or removing [...]

Monday, February 16th, 2009 at 15:09 | 22 comments
Categories: Spring Security

More often than not you are required to secure your login pages and certain admin resources using secured socket layer (SSL) or TLS. This can be quite a task if you go around manually redirecting all your http requests to https and then configuring your server. Whats worse is that another team member may forget [...]

Wednesday, February 11th, 2009 at 18:28 | 1 comment
Categories: Tips & Tricks

I wish spring security would work on their documentation and tell people how easy it is to implement a custom service for loading user details. You don’t HAVE to use JDBC to do that, you can write your very own hibernate, toplink or whatever DAO to do just that. It’s important to realise that spring-security [...]

Wednesday, February 11th, 2009 at 16:27 | 20 comments
Categories: Spring Security

So I managed to configure spring security in my last article here but what do I do now. How do I create the login form, login.jsp for my users to authenticate from. I searched around and found a few articles but none that listed out the login page. Then I looked in the spring-security distribution

Monday, February 9th, 2009 at 07:24 | 8 comments
Categories: Spring Security
TOP