Grails Security

Grails brings together the best of breed frameworks on the JVM that allows for a quick time to market rollout of a project. As important as time to market and quality is there is still one thing that requires and demands some time and attention: Security! There is a growing threat with 75% of todays hacking attempts attacking the web tier.

This session will look at OWASP's top ten list and provide code examples of what to look for during code reviews and how to fix sql injection and cross site scripting (XSS). We'll look at several of the grails security plugins and how to best leverage them to protect web application resources.

Featured Speakers

Costin Leau

Lead, Spring OSGi and Spring JavaConfig

Costin Leau is an SpringSource software engineer based in Romania. His interests include data access and aspect oriented programming. With significant development experience, Costin has worked on the Spring JPA integration, Pitchfork project and JavaConfig. Costin is currently the lead of the Spring Dynamic Modules (Spring OSGi) and the Spring-inspired, OSGi 4.2 Blueprint Service RI. More »

Christian Dupuis

Lead, SpringSource Tool Suite and Spring IDE

Christian is a Principal Software Engineer for SpringSource and is the leader of the Tools Team responsible for SpringSource development tools including SpringSource Tool Suite. Since 2004 Christian has led the well known Spring IDE open source project that provides development tools for the Spring Portfolio based on Eclipse. Christian has been developing Java enterprise applications since 1997. During this time, .. More »

Hamlet D'Arcy

Sr. Java/Groovy Developer, Groovy Committer

Hamlet D'Arcy has been writing software for over a decade, and has spent considerable time coding in C++, Java, and Groovy. He's passionate about learning new languages and different ways to think about problems, and recently he's been discovering the joys of both F# and Scheme. He's an active member of the Groovy Users of Minnesota and the Object Technology User Group, is a committer on the Groovy project, and is a .. More »

Joseph Nusairat

Co-Author of Beginning Groovy & Grails

Joseph Faisal Nusairat, author of "Beginning JBoss Seam" and co-author "Beginning Groovy & Grails", is a Java developer who has been working full time in the Columbus Ohio area since 1998, primarily focused on Java development. His career has taken him into a variety of Fortune 500 industries including military applications, data centers, banking, internet security, pharmaceuticals, and insurance. Joseph is particul.. More »

Paul King

co-author of "Groovy in Action"

Paul King leads ASERT, an organization based in Brisbane, Australia which provides software development, training and mentoring services to customers wanting to embrace new technologies, harness best practices and innovate. He has been contributing to open source projects for nearly 20 years and is an active committer on numerous projects including Groovy. Paul speaks at international conferences, publishes in softw.. More »