Win a copy of Programmer's Guide to Java SE 8 Oracle Certified Associate (OCA) this week in the OCAJP forum!
  • Post Reply
  • Bookmark Topic Watch Topic
  • New Topic

Spring Integration and Security

 
Sergio da Silva
Greenhorn
Posts: 8
  • Mark post as helpful
  • send pies
  • Quote
  • Report post to moderator
I took a look at the Spring Integration Action TOC and did not find security related topics.

How does Spring Integration "integrate" with Spring Security? How is the security context propagated ?

Thanks!
 
Iwein Fuld
Author
Greenhorn
Posts: 14
  • Mark post as helpful
  • send pies
  • Quote
  • Report post to moderator
Nice question! The integration is rather simple: http://static.springsource.org/spring-integration/docs/latest-ga/reference/htmlsingle/#security

We planned a chapter on security in the book, but as you can see it would be tricky to fill it with much information specific to Spring Integration. Because Spring Integration works with Spring Security and Spring WS, the interesting parts happen in there.

There are two ways Messaging and Security intersect: on the message level and on the transport level. The transport could be http secured by tls for example. But it can also be Java itself, secured by Spring Security through AOP. For message level security you could use ws-security, which is nicely supported in Spring WS, but you can also use your own encryption if you don't want to send xml.

 
It is sorta covered in the JavaRanch Style Guide.
  • Post Reply
  • Bookmark Topic Watch Topic
  • New Topic