I’m happy to announce the release of the new Stark Security plugin to the Grails plugins repository. It’s a cleaned-up (and, hopefully, simplified) edition of the alternative Spring Security plugin previously mentioned here. The main focus of this plugin is to provide a simple yet strong security solution, and it’s different from the standard acegi and jsecurity plugins in that it offers:
- Lock-down or ‘pessimistic’ approach. Instead of leaving the web application open and relying on configured rules to lock down certain areas, the Stark Security plugin locks down everything by default. Developers open up access on a controller-method basis as they are coding the controllers.
- Authorization mappings by convention. The determination of which roles can access which URLs is declared by convention in every controller, right next to the eventual URL end-points (controller methods). This makes for very straight-forward implementation and maintenance of the security rules.
Version 0.1 is available by simply running this from within your Grails project:
grails install-plugin stark-security
Documentation is available at the Stark Security Plugin page at the Grails plugins web site.
Ted Naleid | 22-Nov-08 at 11:01 pm | Permalink
Nice job Ola, this looks great and I’m looking forward to hearing about other people’s experience using this implementation. I’ve found it quite easy to understand and use.
Pages tagged "plugin" | 23-Nov-08 at 11:01 pm | Permalink
[...] bookmarks tagged plugin Ola Bildtsen :: Announcing Stark Security Plugin f… saved by 4 others Oneblood121 bookmarked on 11/23/08 | [...]
Web 2.0 Announcer | 24-Nov-08 at 5:18 am | Permalink
Announcing new Stark Security Plugin for Grails…
[...]Announcing a new security plugin for Grails, Stark Security. A slim Spring Security solution that offers simple installation and configuration, pessimistic security approach, and convention-based definition of authorization mappings.[...]…