• Post Reply Bookmark Topic Watch Topic
  • New Topic
programming forums Java Mobile Certification Databases Caching Books Engineering Micro Controllers OS Languages Paradigms IDEs Build Tools Frameworks Application Servers Open Source This Site Careers Other Pie Elite all forums
this forum made possible by our volunteer staff, including ...
Marshals:
  • Campbell Ritchie
  • Jeanne Boyarsky
  • Ron McLeod
  • Liutauras Vilda
  • Paul Clapham
Sheriffs:
  • paul wheaton
  • Tim Cooke
  • Henry Wong
Saloon Keepers:
  • Stephan van Hulst
  • Tim Holloway
  • Carey Brown
  • Frits Walraven
  • Piet Souris
Bartenders:
  • Mike London

Is using Spring Security more secure than providing your own simple authentication?

 
Ranch Hand
Posts: 2622
13
  • Mark post as helpful
  • send pies
    Number of slices to send:
    Optional 'thank-you' note:
  • Quote
  • Report post to moderator
Is using Spring Security more secure than providing your own simple authentication(login logout using session).?
 
Ranch Hand
Posts: 672
4
Eclipse IDE Spring Java
  • Mark post as helpful
  • send pies
    Number of slices to send:
    Optional 'thank-you' note:
  • Quote
  • Report post to moderator
It depends on what's your definition of secure?

If only login/logout is you definition, then we cant compare, both may be same.
one reason, which i can think of to using spring security, even in this case is, session fixation problem can be easily solved using spring security, which may not be case if we just use our own login mechanism.

Using spring security is always recommended, instead of we implementing login/logout functionality, why do you want to reinvent the wheel when its already invented?
It helps in future to implement SSO and so on..
 
Monica Shiralkar
Ranch Hand
Posts: 2622
13
  • Mark post as helpful
  • send pies
    Number of slices to send:
    Optional 'thank-you' note:
  • Quote
  • Report post to moderator
Thanks.I got the answer to some extent.i meant to ask are applications with Spring Security integrated more secure than normal Applications?What did you mean by 'session fixation problem'
 
Prasad Krishnegowda
Ranch Hand
Posts: 672
4
Eclipse IDE Spring Java
  • Likes 1
  • Mark post as helpful
  • send pies
    Number of slices to send:
    Optional 'thank-you' note:
  • Quote
  • Report post to moderator

Monica. Shiralkar wrote:are applications with Spring Security integrated more secure than normal Applications?


We can frame this sentence as "applications with Spring Security integrated are more easier to be made secure than normal Applications."

However as i wrote earlier..

Prasad Krishnegowda wrote:It depends on what's your definition of secure?



Monica. Shiralkar wrote:What did you mean by 'session fixation problem'


See this http://en.wikipedia.org/wiki/Session_fixation


reply
    Bookmark Topic Watch Topic
  • New Topic