matusFollower
RT @ecamacho: Todo apunta que este añó sí voy al #springone2gx << #ftw!!!!Sep 9, 2010 3:07 PM
Ben Alex
Creator of Spring Security, Spring Roo & SpringSource Principal S/W Engineer
Dr Ben Alex is a Principal Software Engineer with SpringSource, and has been working professionally in software since 1995. Ben founded the Spring Security project in 2003 and led its development into a popular, open-source security framework that is used in numerous government, banking and military installations. More recently Ben founded and serves as lead of the Spring Roo and Spring Shell projects, both of which deliver significant productivity and usability benefits to those using Spring technologies.
Ben's career history also includes other roles in software development and business. From 2005 until 2008, he led the establishment and exponential growth of SpringSource's operations in Asia-Pacific. Prior to SpringSource, Ben founded and grew a successful Australian software company, Acegi Technology Pty Limited. He has been a director and advisor to businesses in diverse industries including business services, intellectual property licensing and ecommerce.
In recent years, Ben has presented at technology conferences including JavaOne, The Server Side Java Symposium, JAOO, Oredev, SpringOne and The Spring Experience. He is a regular guest presenter at user groups across the world, with recent appearances in Sydney, Melbourne, Brisbane, Canberra, Perth, Singapore, Wellington, Auckland, Christchurch and Stockholm. He also authored the security chapter of the Wiley book, "Professional J2EE Development with Spring Framework," and maintains a blog at http://blog.springsource.com/main/author/bena/.
Ben's career history also includes other roles in software development and business. From 2005 until 2008, he led the establishment and exponential growth of SpringSource's operations in Asia-Pacific. Prior to SpringSource, Ben founded and grew a successful Australian software company, Acegi Technology Pty Limited. He has been a director and advisor to businesses in diverse industries including business services, intellectual property licensing and ecommerce.
In recent years, Ben has presented at technology conferences including JavaOne, The Server Side Java Symposium, JAOO, Oredev, SpringOne and The Spring Experience. He is a regular guest presenter at user groups across the world, with recent appearances in Sydney, Melbourne, Brisbane, Canberra, Perth, Singapore, Wellington, Auckland, Christchurch and Stockholm. He also authored the security chapter of the Wiley book, "Professional J2EE Development with Spring Framework," and maintains a blog at http://blog.springsource.com/main/author/bena/.
Presentations
Practical Quick Start With Spring/Acegi Security
This presentation will provide developers with a practical approach to security issues typically encountered when developing Spring-based enterprise applications, with a particular focus on Acegi Security.
We will cover authentication, web request authorization, method authorization on your services layer beans, and domain object access control capabilities. The presentation will briefly compare two common implementation approaches: container managed authentication (CMA) and Spring/Acegi Security. A sample web application will be used throughout the presentation to illustrate some typical security requirements of enterprise applications. We will migrate this sample application from CMA to Spring/Acegi Security during the course of the presentation.
No previous experience with Spring Security is required to benefit from this presentation, although a basic understanding of CMA and configuring Spring beans would be ideal.
Advanced Security with Spring/Acegi Security
Moving beyond the basics of using Acegi Security, in this presentation we will review some of the more sophisticated capabilities and extension points provided by Acegi Security.
We will focus on the domain object instance access control list (ACL) capabilities in particular. We will review several of the popular extension points and advanced features that are useful to in more sophisticated enterprise applications.
This presentation is not an introduction to Acegi Security. If you are new to Acegi Security, you will gain the most benefit from this presentation by firstly attending one of the other introductory Acegi Security sessions available as part of The Spring Experience (for example, "Practical Quick Start With Spring/Acegi Security").
