Acegi SecurityTable of ContentsPrefacePart I. Overall ArchitectureChapter 1. Introduction1.1. What is Acegi Security?1.2. History1.3. Release NumberingChapter 2. Technical Overview2.1. Runtime Environment2.2. Shared Components2.3. Authentication2.4. Secure Objects2.5. ConclusionChapter 3. Supporting Infrastructure3.1. Localization3.2. FiltersChapter 4. Channel Security4.1. Overview4.2. Configuration4.3. ConclusionChapter 5. Tag Libraries5.1. Overview5.2. Configuration5.3. UsagePart II. AuthenticationChapter 6. Common Authentication Services6.1. Mechanisms, Providers and Entry Points6.2. UserDetails and Associated Types6.2.1. In-Memory Authentication6.2.2. JDBC Authentication6.3. Concurrent Session Handling6.4. Authentication Tag LibrariesChapter 7. DAO Authentication Provider7.1. Overview7.2. ConfigurationChapter 8. Java Authentication and Authorization Service (JAAS) Provider8.1. Overview8.2. Configuration8.2.1. JAAS CallbackHandler8.2.2. JAAS AuthorityGranterChapter 9. Siteminder Authentication Mechanism9.1. Overview9.2. ConfigurationChapter 10. Run-As Authentication Replacement10.1. Overview10.2. ConfigurationChapter 11. Form Authentication Mechanism11.1. Overview11.2. ConfigurationChapter 12. BASIC Authentication Mechanism12.1. Overview12.2. ConfigurationChapter 13. Digest Authentication13.1. Overview13.2. ConfigurationChapter 14. Anonymous Authentication14.1. Overview14.2. ConfigurationChapter 15. Remember-Me Authentication15.1. Overview15.2. ConfigurationChapter 16. X509 Authentication16.1. Overview16.2. Using X509 with Acegi Security16.3. ConfigurationChapter 17. LDAP Authentication17.1. Overview17.2. Using LDAP with Acegi Security17.2.1. LdapAuthenticator Implementations17.2.1.1. Common Functionality17.2.1.2. BindAuthenticator17.2.1.3. PasswordComparisonAuthenticator17.2.1.4. Active Directory Authentication17.2.2. Connecting to the LDAP Server17.2.3. LDAP Search Objects17.2.3.1. FilterBasedLdapUserSearch17.3. ConfigurationChapter 18. CAS Authentication18.1. Overview18.2. How CAS Works18.3. Optional CAS Server Setup18.3.1. CAS Version 2.018.3.2. CAS Version 3.018.4. Configuration of CAS Client18.5. Advanced IssuesChapter 19. Container Adapter Authentication19.1. Overview19.2. Adapter Authentication Provider19.3. Jetty19.4. JBoss19.5. Resin19.6. TomcatPart III. AuthorizationChapter 20. Common Authorization Concepts20.1. Authorities20.2. Pre-Invocation Handling20.3. After Invocation Handling20.3.1. ACL-Aware AfterInvocationProviders20.3.2. ACL-Aware AfterInvocationProviders (old ACL module)20.4. Authorization Tag LibrariesChapter 21. Secure Object Implementations21.1. AOP Alliance (MethodInvocation) Security Interceptor21.2. AspectJ (JoinPoint) Security Interceptor21.3. FilterInvocation Security InterceptorChapter 22. Domain Object Security22.1. Overview22.2. Key ConceptsChapter 23. Domain Object Security (old ACL module)23.1. Overview23.2. Basic ACL PackagePart IV. Other ResourcesChapter 24. Sample Applications24.1. Contacts24.2. Tutorial SampleChapter 25. Community Support25.1. Use JIRA for Issue Tracking25.2. Becoming Involved25.3. Further InformationAcegi Security 1.0.7Acegi Security 1.0.7x
Acegi SecurityReference Documentation1.0.7Ben AlexAcegi SecurityAcegi SecurityAcegi Security 1.0.7Acegi Security 1.0.7Acegi Security 1.0.7Table of ContentsPreface I. Overall Architecture 1. Introduction 1.1. What is Acegi Security? 1.2. History 1.3. Release Numbering 2. Technical Overview 2.1. Runtime Environment 2.2. Shared Components 2.3. Authentication 2.4. Secure Objects 2.5. Conclusion 3. Supporting Infrastructure 3.1. Localization 3.2. Filters 4. Channel Security 4.1. Overview 4.2. Configuration 4.3. Conclusion 5. Tag Libraries 5.1. Overview 5.2. Configuration 5.3. Usage II. Authentication 6. Common Authentication Services 6.1. Mechanisms, Providers and Entry Points 6.2. UserDetails and Associated Types 6.2.1. In-Memory Authentication 6.2.2. JDBC Authentication 6.3. Concurrent Session Handling 6.4. Authentication Tag Libraries 7. DAO Authentication Provider 7.1. Overview 7.2. Configuration 8. Java Authentication and Authorization Service (JAAS)
Provider 8.1. Overview 8.2. Configuration 8.2.1. JAAS CallbackHandler 8.2.2. JAAS AuthorityGranter 9. Siteminder Authentication Mechanism 9.1. Overview 9.2. Configuration 10. Run-As Authentication Replacement 10.1. Overview 10.2. Configuration 11. Form Authentication Mechanism 11.1. Overview 11.2. Configuration 12. BASIC Authentication Mechanism 12.1. Overview 12.2. Configuration 13. Digest Authentication 13.1. Overview 13.2. Configuration 14. Anonymous Authentication 14.1. Overview 14.2. Configuration 15. Remember-Me Authentication 15.1. Overview 15.2. Configuration 16. X509 Authentication 16.1. Overview 16.2. Using X509 with Acegi Security 16.3. Configuration 17. LDAP Authentication 17.1. Overview 17.2. Using LDAP with Acegi Security 17.2.1. LdapAuthenticator Implementations 17.2.2. Connecting to the LDAP Server 17.2.3. LDAP Search Objects 17.3. Configuration 18. CAS Authentication 18.1. Overview 18.2. How CAS Works 18.3. Optional CAS Server Setup 18.3.1. CAS Version 2.0 18.3.2. CAS Version 3.0 18.4. Configuration of CAS Client 18.5. Advanced Issues 19. Container Adapter Authentication 19.1. Overview 19.2. Adapter Authentication Provider 19.3. Jetty 19.4. JBoss 19.5. Resin 19.6. Tomcat III. Authorization 20. Common Authorization Concepts 20.1. Authorities 20.2. Pre-Invocation Handling 20.3. After Invocation Handling 20.3.1. ACL-Aware AfterInvocationProviders 20.3.2. ACL-Aware AfterInvocationProviders (old ACL module) 20.4. Authorization Tag Libraries 21. Secure Object Implementations 21.1. AOP Alliance (MethodInvocation) Security Interceptor 21.2. AspectJ (JoinPoint) Security Interceptor 21.3. FilterInvocation Security Interceptor 22. Domain Object Security 22.1. Overview 22.2. Key Concepts 23. Domain Object Security (old ACL module) 23.1. Overview 23.2. Basic ACL Package IV. Other Resources 24. Sample Applications 24.1. Contacts 24.2. Tutorial Sample 25. Community Support