技术控

    今日:110| 主题:49431
收藏本版 (1)
最新软件应用技术尽在掌握

[其他] Can Spring Security Be Auto-Generated?

[复制链接]
马蚁族 发表于 2016-10-5 13:14:28
61 0

立即注册CoLaBug.com会员,免费获得投稿人的专业资料,享用更多功能,玩转个人品牌!

您需要 登录 才可以下载或查看,没有帐号?立即注册

x
I’ve generally found security requirements are easy to state but hard to implement. So, I've been wondering if I can autogenerate my Spring Security configuration.
  Security Requirements

  Common security requirements are:
  
       
  • Access controls on files/directories based on roles, IP address, etc.   
  • Validation of credentials from an authentication provider  
  Coding

  The problem with coding yourself is:
  
       
  • Security is complex, and you need to know what you're doing — there is a lot of information in the Spring Security manual.   
  • Upgrades: Spring Security could upgrade and you could miss out on new features to improve your security.   
  • Bugs: You could introduce a bug in your code.  
  It would be easier if I could define my security requirements into a website and autogenerate my security configuration.
  Prototype

   I’ve created a prototype of this idea at spring-security-generator , with the code released on GitHub .
   
Can Spring Security Be Auto-Generated?-1 (controls,features,released,security,yourself)

  Future

  I see this idea evolving to include:
  
       
  • Tutorial — soon to be released.   
  • REST API security.   
  • Automate creation of unit tests, login pages.   
  • Best practice — what are the best practice for configurations of spring security?   
  • Storing security configuration.  

友荐云推荐




上一篇:什么时候不该使用es6箭头函数
下一篇:Why does deep and cheap learning work so well?
酷辣虫提示酷辣虫禁止发表任何与中华人民共和国法律有抵触的内容!所有内容由用户发布,并不代表酷辣虫的观点,酷辣虫无法对用户发布内容真实性提供任何的保证,请自行验证并承担风险与后果。如您有版权、违规等问题,请通过"联系我们"或"违规举报"告知我们处理。

*滑动验证:
您需要登录后才可以回帖 登录 | 立即注册

本版积分规则

我要投稿

推荐阅读

扫码访问 @iTTTTT瑞翔 的微博
回页顶回复上一篇下一篇回列表手机版
手机版/CoLaBug.com ( 粤ICP备05003221号 | 文网文[2010]257号 )|网站地图 酷辣虫

© 2001-2016 Comsenz Inc. Design: Dean. DiscuzFans.

返回顶部 返回列表