tags:

views:

383

answers:

2
+4  Q: 

What makes nimble better than shiro?

What makes nimble a better choice than shiro?

I'm trying to decide between nimble and shiro for a new grails project right now and I'm curious what makes nimble the better choice.

+5  A: 

As you probably know, Nimble is a layer on top of Shiro, so you get Shiro for the underlying security / authorization framework, and Nimble takes the shiro backend and puts a front end on it. It also defines a few configuration options that you can set - something you would have had to do yourself otherwise.

I really appreciate that Nimble offers a very nice user interface that lets me manage the underlying shiro permissions and objects. It's very well designed as a plugin, with a good extensibility model for User and Profile classes. Adding security to my app became an almost trivial thing with Nimble - just a few hooks for permissions in a few places, but the rest is written for me.

The UI is pretty sophisticated - would have taken probably a few weeks (or more) at least to do something similar, and it's unlikely I would have had the time to do it quite as nicely.

I am not using some of the other authentication options (facebook, openId, etc), but it's nice to know that if I need to, I can just enable those.

My use case is a SaaS application.

Jean Barmash  2010-01-22 20:46:24
+2  A: 

I'm currently working with Nimble and this is what I've found so far:

Unless you are planning on using alot of the SSO / Social connectors (Facebook etc.) then it might be easier to just roll your own using shiro. Nimble kind of forces you into their schema. Of course, if you are not too worried about serious deep-level permissions issues then I say go for it.

One thing I wish someone had told me: Nimble uses a "most permissive" scheme. If a user is a member of a group that has access to a resource (i.e. controller/action combo) then you cannot remove that permission from the user itself. This can lead to some issues if you are wanting tight control over your app.

Another annoying thing about Nimble is that documentation is few and far between.

Best of luck!

mdinstuhl  2010-02-10 17:24:10

related questions

How do I get at the goodies in my Grails Config.groovy at runtime?
Running a web app in Grails vs Django
Adding a method to a domain class
Getting Groovy's Grape Going!!!
Groovy question: "except" syntax?
What does it mean for a programming language to be "on rails"?
Groovy parsing JSON vs XML
Parsing XML with multi-line records
How do I redirect a file download using Grails?
Create grails war without version number
What needs checking in for a Grails app?
Grails - Acegi: Customize Authentication Method
J2EE and Grails: Communication with WebServices? Which framework?
Grails 1.0.3 console reports 'premature end of file'
Grails with YUI table example
grails plugin for eclipse and netbeans 6.1
error while using groovy.sql Out parameter.
Rails books?
Rails or Grails?
Is anyone developing facebook apps on Grails
How do I increase the number of default rows per page?
How to check if element in groovy array/hash/collection/list?
How do you access two databases in Grails
How do you change the default homepage in a Grails application?
Learning Ruby on Rails any good for Grails?