Return-Path: X-Original-To: archive-asf-public-internal@cust-asf2.ponee.io Delivered-To: archive-asf-public-internal@cust-asf2.ponee.io Received: from cust-asf.ponee.io (cust-asf.ponee.io [163.172.22.183]) by cust-asf2.ponee.io (Postfix) with ESMTP id 7CD1F200C7E for ; Tue, 9 May 2017 04:39:57 +0200 (CEST) Received: by cust-asf.ponee.io (Postfix) id 7B9A9160BBF; Tue, 9 May 2017 02:39:57 +0000 (UTC) Delivered-To: archive-asf-public@cust-asf.ponee.io Received: from mail.apache.org (hermes.apache.org [140.211.11.3]) by cust-asf.ponee.io (Postfix) with SMTP id BF098160BA5 for ; Tue, 9 May 2017 04:39:56 +0200 (CEST) Received: (qmail 23963 invoked by uid 500); 9 May 2017 02:39:56 -0000 Mailing-List: contact commits-help@directory.apache.org; run by ezmlm Precedence: bulk List-Help: List-Unsubscribe: List-Post: List-Id: Reply-To: dev@directory.apache.org Delivered-To: mailing list commits@directory.apache.org Received: (qmail 23954 invoked by uid 99); 9 May 2017 02:39:54 -0000 Received: from Unknown (HELO svn01-us-west.apache.org) (209.188.14.144) by apache.org (qpsmtpd/0.29) with ESMTP; Tue, 09 May 2017 02:39:54 +0000 Received: from svn01-us-west.apache.org (localhost [127.0.0.1]) by svn01-us-west.apache.org (ASF Mail Server at svn01-us-west.apache.org) with ESMTP id C55FC3A0A82 for ; Tue, 9 May 2017 02:39:53 +0000 (UTC) Content-Type: text/plain; charset="utf-8" MIME-Version: 1.0 Content-Transfer-Encoding: 7bit Subject: svn commit: r1794489 - /directory/site/trunk/content/fortress/testimonials.mdtext Date: Tue, 09 May 2017 02:39:53 -0000 To: commits@directory.apache.org From: smckinney@apache.org X-Mailer: svnmailer-1.0.9 Message-Id: <20170509023953.C55FC3A0A82@svn01-us-west.apache.org> archived-at: Tue, 09 May 2017 02:39:57 -0000 Author: smckinney Date: Tue May 9 02:39:53 2017 New Revision: 1794489 URL: http://svn.apache.org/viewvc?rev=1794489&view=rev Log: last Modified: directory/site/trunk/content/fortress/testimonials.mdtext Modified: directory/site/trunk/content/fortress/testimonials.mdtext URL: http://svn.apache.org/viewvc/directory/site/trunk/content/fortress/testimonials.mdtext?rev=1794489&r1=1794488&r2=1794489&view=diff ============================================================================== --- directory/site/trunk/content/fortress/testimonials.mdtext (original) +++ directory/site/trunk/content/fortress/testimonials.mdtext Tue May 9 02:39:53 2017 @@ -17,7 +17,7 @@ I searched all available open source sol I went this route because Apereo CAS is very good way to handle the Single Sign-On and Single Sign-Out problems, but it lacks authorization capabilities, because there aren't standardized solutions in that space yet. Apache Fortress is good at authorization because it uses standard RBAC. However, Apache Fortress doesn't have an SSO solution yet. That is why I think both should be combined because they complement each other. Unfortunately, there aren't yet good documentation resources available to combine these which is why I created this one, so other developers can follow my team's lead and make their life easier by providing good security for their webapps. -The solution I present to you here has operated successfully inside production environments since 2015 for almost 2 years now and so it's quite mature. I write this how-to document to explain how it works and it's intended as a guide for you to follow as well. +The solution I present to you here has operated successfully inside production environments since 2015 and so it's quite mature. I write this how-to document to explain how it works. It's intended as a guide for you to follow as well. Here are the technology stacks used within my extended framework: @@ -27,7 +27,7 @@ Here are the technology stacks used with * Apache Ignite -> 1.7.0 * Spring Framework -> 4.2.x-RELEASE -There are two steps of development. One to handle the server side and the other for the client. The client is shared across my dev team for managing security within their web applications. +There are two areas of development focus. One to handle the server side and the other for the client. The client is shared with my dev team for managing security within their web applications. 1. CAS Server side development: Includes creating own implementation for AbstractUsernamePasswordAuthenticationHandler and implemening an Apache Ignite Service Registry for CAS 2. CAS Client side development: Includes create own implementation for WebExpressionVoter and CasAuthenticationProvider