对 REST 安全性的任何 Spring Framework 支持吗? [英] Any Spring Framework support for REST security?
问题描述
我即将基于 Spring 框架为我的 RESTful 服务实现安全性.实际上,我以前从未保护过 RESTful WS,但是我给自己做了一个很好的介绍 此处.基本上,建议使用 Amazon S3 甚至 OAuth 作为很好的示例.
I am about to implement security for my RESTful services based on the Spring framework. Actually, I have never secured RESTful WS before, but I've got myself a good introduction here. Basically, Amazon S3 or even OAuth are suggested as good examples.
我的问题:
- Spring 框架是否提供这些开箱即用的策略?
- 如果是:实现这些策略的是 Spring 安全吗?
- 如果不是:您建议如何使用 Spring 实施这些策略(OAuth ...)?
预先感谢您的任何建议.
Thanks in advance for any suggestion.
呃
推荐答案
这绝对是您正在寻找的 Spring Security.它提供了一种保护 RESTful spring-mvc 控制器调用的极好方法.
It is definitely Spring Security that you're looking for. It provides an excellent way of securing the invocations of your RESTful spring-mvc controllers.
oAuth 从事联合授权业务,这是您在构建应用程序时需要的,该应用程序要求其用户授予您的应用程序访问其位于云中的一部分私有数据的权限,例如他们的 gmail联系人或他们的 Google 日历.
oAuth is in the business of federated authorization, which is what you need when you're building an application that requires its users to give your application permission to access a portion of their private data that lives in the cloud, e.g their gmail contacts or their Google Calendar.
这篇关于对 REST 安全性的任何 Spring Framework 支持吗?的文章就介绍到这了,希望我们推荐的答案对大家有所帮助,也希望大家多多支持IT屋!
