请选择 进入手机版 | 继续访问电脑版

技术控

    今日:143| 主题:61993
收藏本版 (1)
最新软件应用技术尽在掌握

[其他] Can Spring Security Be Auto-Generated?

[复制链接]
马蚁族 发表于 2016-10-5 13:14:28
94 0
I’ve generally found security requirements are easy to state but hard to implement. So, I've been wondering if I can autogenerate my Spring Security configuration.
  Security Requirements

  Common security requirements are:
  
       
  • Access controls on files/directories based on roles, IP address, etc.   
  • Validation of credentials from an authentication provider  
  Coding

  The problem with coding yourself is:
  
       
  • Security is complex, and you need to know what you're doing — there is a lot of information in the Spring Security manual.   
  • Upgrades: Spring Security could upgrade and you could miss out on new features to improve your security.   
  • Bugs: You could introduce a bug in your code.  
  It would be easier if I could define my security requirements into a website and autogenerate my security configuration.
  Prototype

   I’ve created a prototype of this idea at spring-security-generator , with the code released on GitHub .
   

Can Spring Security Be Auto-Generated?

Can Spring Security Be Auto-Generated?-1-技术控-controls,features,released,security,yourself

  Future

  I see this idea evolving to include:
  
       
  • Tutorial — soon to be released.   
  • REST API security.   
  • Automate creation of unit tests, login pages.   
  • Best practice — what are the best practice for configurations of spring security?   
  • Storing security configuration.  
我要投稿

推荐阅读


回页顶回复上一篇下一篇回列表
手机版/c.CoLaBug.com ( 粤ICP备05003221号 | 文网文[2010]257号 | 粤公网安备 44010402000842号 )

© 2001-2017 Comsenz Inc.

返回顶部 返回列表