Welcome, Guest! Log In | Create Account

Share

jGuard

Older News Items

Project News for jGuard

  • jGuard-2.0.0-beta-5 released

    changelog:
    - upgrade to java 5
    - upgrade to JCapthca 1.0-RC6
    - add authenticationSchemeHandler interface and the related authentication lifecycle
    - fix a bug about CryptUtils : in a concurrency use case, some password check can fail.
    => thanks to Lars Feistner
    -migrate from java.util.logging to SLF4J(logging facade) to permit for the end user to choose its logging library
    - add a 'propagateThrowable' option (thanks to Lars Feistner for the idea) to permit to not catch any exception for a debugging purpose
    - fix the setAttributes and setAttribute method in MbeanServerGuard (JMX)
    => thanks to Andriy Gapon
    - add regexp support in JSFPermission
    => thanks to Victor Bucutea
    - add more unit tests including JSF tests
    -upgrade release number to 2.0.0 to reflect major API changes

    NOTE:jars are present in archives in the 'target' subdirectories.

    what's planned for the next 2.0.0 beta 6 release(planned release date 15 march 2009):
    - add some Struts junit tests
    - re-establish the BASIC authentication
    - fix 'setAttributes' method in mbeanServerGuard and provides unit tests

    2009-02-16 12:36:13 UTC by diabolo512

  • jGuard v1.1.0 beta 3 released!

    The jGuard team is pleased to announce a new 'experimental' release(v1.1.0 beta 3) of the java security library (http://www.jguard.net).

    enhancements since the last 'experimental' release (v1.1.0 beta 2):
    - multi-organizations support
    - many JUNIT tests
    - JdbcAuthenticationManager is replaced by HibernateAuthenticationManager
    - fix some bugs on the JSF example

    remaining tasks before the final release:
    - re-establish other http authentication schemes(only FORM is supported in 1.1 beta release)
    - complete the jGuard reference documentation

    2008-05-04 13:21:27 UTC by diabolo512

  • Guard v1.1.0 beta 3 released!

    The jGuard team is pleased to announce a new 'experimental' release(v1.1.0 beta 3) of the java security library (http://www.jguard.net).

    enhancements since the last 'experimental' release (v1.1.0 beta 2):
    - multi-organizations support
    - many JUNIT tests
    - JdbcAuthenticationManager is replaced by HibernateAuthenticationManager
    - fix some bugs on the JSF example

    remaining tasks before the final release:
    - re-establish other http authentication schemes(only FORM is supported in 1.1 beta release)
    - complete the jGuard reference documentation

    2008-05-04 12:45:52 UTC by diabolo512

  • jGuard v1.1.0 beta 2 released!

    he jGuard team is pleased to announce a new 'experimental' release(v1.1.0 beta 2) of the java security library (http://www.jguard.net).

    enhancements since the last 'experimental' release (v1.1.0 beta 1):
    - integrate DBCP pool library when JDBC connections are defined in a Driver Manager way
    - fix a bug in CRLLoginModule
    - add support for JSF security through a PhaseListener implementation (see jguard-jsf-example for more details)
    - add a redirectFilter in the jguard-jsf-example to prevent direct access to jsp
    - only FORM authentication is supported in this release (other authentication schemes should be supported again in the next release)

    2007-10-01 22:12:34 UTC by diabolo512

  • jGuard v1.1.0 beta1 released!

    jGuard v1.1.0 beta1 released!

    the jGuard team is pleased to announce a new 'experimental' release(v1.1.0 beta1) of the java security library (http://www.jguard.net).
    this release is a major release:
    all jguard users will have a great benefit to upgrade to this new release.
    this library is build on top of JAAS, to securize web applications and standalone applications.
    his goal is to provide for developers, an easy way to manage authentication and authorizations.

    enhancements since the last 'stable' release (v1.0.0):
    - rewrite documentation on docbook to generate different output formats
    - decouple HTTP protocol from accessFilter for a future easy JSF integration
    - provide audit foundation
    - multiple minor bugfixes
    - APIs enhancement
    => thanks to Théotime JURZAK for its feedback!



    the main jGuard features are :
    - stands on java standards (JAAS and jEE): we don't reinvent the wheel
    - stands on security standards :enhanced RBAC(from NIST) standard called ABAC
    - relies only on java 1.4 and j2ee 1.3 or higher
    - can be adapted on any webapp, on any application server, or standalone applications
    - does not depend on a web framework, or an AOP framework
    - authentications and authorizations are handled by pluggable mechanisms
    - changes take effects 'on the fly' (dynamic configuration)
    - each webapp has its own authentications and authorizations configuration
    - authentications can be configured through XML or databases (Oracle, MySQL,PostgreSQL,DB2,SQL Server)
    - support encryption in authentication
    - authorizations can be configured through XML or databases(Oracle, MySQL,PostgreSQL,DB2,SQL Server)
    - a taglib is provided to protect jsp fragment
    - support security manager

    a webapp example(called 'jGuardExample') is provided to quickly test jGuard (via Xml configuration files, or Database).
    a swing example is provided too.

    this project is released under the LGPL licence.

    the jGuard web site:
    http://www.jguard.net

    the jGuard homePage on sourceforge:
    http://sourceforge.net/projects/jguard/

    jGuard forums are open:
    http://sourceforge.net/forum/?group_id=107276

    easy JAAS integration for j2ee and j2se has gone!
    don't reinvent the wheel, use the standards.

    Charles GAY(jGuard team).

    2007-08-01 00:30:57 UTC by diabolo512