|
Posted by Vikas Hazrati on Monday, October 15, 2007
Controlling access to information systems and other associated networks is necessary for the preservation of the CIA triad i.e. Confidentiality, Integrity and Availability of the systems and networks.
The following presentation discusses the types of access controls, authentication mechanisms and SSO in general to see how the access to various resources can be secured efficiently with the best possible way.
Posted in Security | 2 Comments »
Posted by Vikas Hazrati on Monday, July 16, 2007
Recently on one of our projects we had the need to allow the ROLE_ADMIN to login as another user without knowing or changing the password of that user. For example ‘Jack’ has the ROLE_ADMIN and ‘Suzy’ has the ROLE_USER. Now ‘Jack’ wants to login as suzy without knowing her password and carry out some tasks on her behalf acting as her when ‘Suzy’ is unavailable and some work needs to be done, of course you should provide a mechanism to audit and log whenever ‘Jack’ wants to play a different role.This is fairly easy to implement using Acegi
The SwitchUserProcessingFilter in Acegi helps to achieve this functionality. The below steps will show how to configure and use it
Read the rest of this entry »
Posted in Acegi, Java, Security | 10 Comments »
