I am about to start a project which will require Stripes, Spring and Hibernate. I'm still getting familiar with all three. I was wondering which one has built in support for securing application access through defining user roles etc?
Also which is better/easier to implement - container vs programmatic security. I'm not too concerned with portability between servers. I will be developing on Tomcat, probably deploying on Caucho Resin.