Tutorial / Examples at your disposal

**Savrak** · Mar 21st, 2006, 04:31 AM

Hello,

1. Acegi is indeed a versatile, very flexible, but/and/though complex security framework.
IMHO, the reference documentation is *almost* out of reach for newcomers, and the reference contacts example *absolutely* out of reach. Both are however absolutely necessary: we have to have a reference doc and a reference example.
The reference doc (parts of it) is alas out of sync with the API, for instance *SecurityEnforcementFilter* is still used throughout the doc while it no longer exists.

2. To further promote Acegi in my organisation I had to write a tutorial intended to newcomers. Currently I have two contrived samples working with Acegi 1.0: "ATI-Acegi-Web1" and "ATI-Acegi-Method1". I plan to add a sample featuring ACLs, and extending these basic samples with more advanced features later on.

"ATI-Acegi-Web1" features the simplest web app:
- URLs are protected via FilterSecurityInterceptor
- Authentication is performed the simplest way via InMemoryDaoImpl in the config file

"ATI-Acegi-Method1" features the simplest sample to protect methods:
- Methods are protected via MethodSecurityInterceptor
- Authentication is performed via InMemoryDaoImpl

Please find attached these 2 samples without the JARs (which are listed in WEB-INF\lib\README.txt and available in the contacts sample).
Nota: Although "ATI-Acegi-Method1" is not a web application, the JARs are kept in WEB-INF\lib as well, so that I may use the same "build.xml" file for both samples.
- [ati-acegi-web1-1.0-nolib.zip] contains the deployed webapp
- [ati-acegi-method1-src-1.0-nolib.zip] contains the Java classes and TestCase to protect methods.

Currently the explanation of these samples is in... French.
Should you be interested in it, I might export my Confluence (excellent wiki!) pages to PDF or HTML.
The samples are however so contrived that one could easily do without further explanation.

If I someone is interested in hosting the samples, I might provide the (small) Eclipse projects also.

Hope this help.
Cheers,

-- Savrak

**Luke Taylor** · Mar 21st, 2006, 04:59 PM

Thanks for putting together the examples as I'm sure people will find them useful. It's nice to see someone taking action to help out (rather than just generally moaning, as some seem to do)

.

Originally Posted by Savrak

The reference doc (parts of it) is alas out of sync with the API, for instance *SecurityEnforcementFilter* is still used throughout the doc while it no longer exists.

At least this should no longer be the case, as I removed any references to SecurityEnforcementFilter yesterday. If anyone has any other specific issues with the reference docs then please post an issue in Jira.

**Ben Alex** · Apr 14th, 2006, 06:05 AM

Would you mind adding this to JIRA and I will be pleased to put it into the Acegi Security codebase to help newcomers.

**haninaguib** · May 9th, 2006, 05:31 AM

Your examples was just what I needed.
SecurityEnforcementFilter was driving me nuts!

I suggest making sure his examples are easily accessible from the main site.
Most of the links to tutorials from the site reference an older version of acegi.

**bkbonner** · Mar 19th, 2007, 05:22 PM

This example works with Spring 1.2.8.

If I update the example in this post to Spring 2.0.2, and place a file called readme.txt in the secure directory, I get the behavior exhibited here:

http://forum.springframework.org/showthread.php?t=36263

I believe this is problem related to the new scopes that Spring 2.0.2 introduced. Does anyone have a working spring config file for acegi security (applicationContext-acegi-security.xml) that works with Spring 2.0.2?

Thanks.

**karldmoore** · Mar 19th, 2007, 05:39 PM

I'm running the example with Spring 2.x. I'm not seeing the problems you are describing.

**bkbonner** · Mar 19th, 2007, 11:03 PM

Karl, thanks for the reply. Are you running it from Tomcat or Jetty?

I see these problems on Websphere. I believe it's a problem related to the plugin between Apache and Websphere. But it seemed to work fine under 1.2.8 of Spring.

We've been troubleshooting this one for a while, but I will revisit it.

**karldmoore** · Mar 20th, 2007, 07:45 AM

I was running it on Tomcat but I've just tried it on Jetty before and didn't see any problems. I would think your hunch is right.

**bkbonner** · Nov 28th, 2007, 08:25 AM

I've taken the example webapp and created a pom that will pull down the required dependencies for the application automatically.

Just run:

Code:

mvn install

to build the war file which will show up in the target directory.

If you want to import it into eclipse, run:

Code:

mvn eclipse:eclipse -Dwtpversion=1.5 -DdownloadSources=true

Have Fun

Thread: Tutorial / Examples at your disposal

Thread Tools

Display

Hybrid View

Tutorial / Examples at your disposal

thanks Savrak

Updating to Spring 2.0.2

Example Webapp - Mavenized

Posting Permissions