• Post Reply Bookmark Topic Watch Topic
  • New Topic
programming forums Java Mobile Certification Databases Caching Books Engineering Micro Controllers OS Languages Paradigms IDEs Build Tools Frameworks Application Servers Open Source This Site Careers Other Pie Elite all forums
this forum made possible by our volunteer staff, including ...
Marshals:
  • Campbell Ritchie
  • Ron McLeod
  • Tim Cooke
  • Liutauras Vilda
  • Jeanne Boyarsky
Sheriffs:
  • Paul Clapham
  • Rob Spoor
  • Junilu Lacar
Saloon Keepers:
  • Stephan van Hulst
  • Tim Holloway
  • Piet Souris
  • Carey Brown
Bartenders:

Spring Integration and Security

 
Greenhorn
Posts: 10
  • Mark post as helpful
  • send pies
    Number of slices to send:
    Optional 'thank-you' note:
  • Quote
  • Report post to moderator
I took a look at the Spring Integration Action TOC and did not find security related topics.

How does Spring Integration "integrate" with Spring Security? How is the security context propagated ?

Thanks!
 
Author
Posts: 14
  • Mark post as helpful
  • send pies
    Number of slices to send:
    Optional 'thank-you' note:
  • Quote
  • Report post to moderator
Nice question! The integration is rather simple: http://static.springsource.org/spring-integration/docs/latest-ga/reference/htmlsingle/#security

We planned a chapter on security in the book, but as you can see it would be tricky to fill it with much information specific to Spring Integration. Because Spring Integration works with Spring Security and Spring WS, the interesting parts happen in there.

There are two ways Messaging and Security intersect: on the message level and on the transport level. The transport could be http secured by tls for example. But it can also be Java itself, secured by Spring Security through AOP. For message level security you could use ws-security, which is nicely supported in Spring WS, but you can also use your own encryption if you don't want to send xml.

 
Don't get me started about those stupid light bulbs.
reply
    Bookmark Topic Watch Topic
  • New Topic