I'm developing a JEE application (JSF2 + richfaces+ Facelets + Tomcat). What's the best way to perform authentification ? Or should i make my own ?
+1
A:
Go for Spring Security
Here is how to integrate it with JSF
Edit:
http://ocpsoft.com/java/acegi-spring-security-jsf-login-page/
org.life.java
2010-09-20 12:12:30
I'm using JSF 2, but this project is for JSF 1.2
mohamida
2010-09-20 12:21:22
@mohamida edited the answer
org.life.java
2010-09-20 12:35:10
It will be almost same.
org.life.java
2010-09-20 12:46:41
Sorry for my misspelling ;)
mohamida
2010-09-20 12:59:49
@mohamida corrrected it
org.life.java
2010-09-20 13:04:43
It's correct now, sorry
mohamida
2010-09-20 14:26:24
+1
A:
People usually pick between ( in no specific order) :
JAAS ( wich is Java/J2EE default security framework )
Spring Security
Custom Made Security
I never used Spring Security but the documentation is huge, i gave up trying that once because of time constraint. JAAS have the advantages of being simple and work out of the box with Tomcat.
I've seen custom security built on top of JAAS too.
What you really have to do is figure out what you will especifically need in your application and check wich frameworks suits your needs better.
Without knowing your business needs, if you only need Authentication (User login) i would say JAAS is the most simple way to go as is it not application intrusive and you wont need to add Spring dependencies if you are not already using it.
Leonardo Figueiredo
2010-09-21 13:57:09
A:
JBoss Seam integrates EJB 3, Facelets, JSF, and hibernate really nicely. Also provides validation of data and some security stuff too. If you use it for all its features, it is really sweet. If you try to pick and choose only certain things out of it, then it is still cool, but you have a few work arounds. But I've been impressed with what I've seen of Seam so far.
Chris Aldrich
2010-09-21 14:10:54