Menu

jGuard v0.65 beta 1 released!

jGuard v0.65 beta 1 released!

i am pleased to announce a new experimental release(v0.65 beta1) of the java security library called jGuard(http://sourceforge.net/projects/jguard/).

this library is build on top of jaas, for J2EE web applications.
his goal is to provide for webapp developers, an easy way to manage authentication and authorizations.
this release is experimental, and does not contain all the features wanted for the next stable release (0.65).
it lacks only by the authorization implementations:
- release v0.65 beta2 will at least, add the XML based authorization backend
- release v0.65 beta3 will at least, add the MySQL based authorization backend
- release v0.65 final will at least, add the Oracle based authorization backend

enhancements of this release:
- upgrade dom4j to the 1.5.2 release.
- auto-discover mechanism policy implementation added for an easier use
=> the jguard.policy which set the platform policy is now optional (only for advanced users)
- remove net.sf.jguard.permissionmanager package and move the corresponding classes
into the net.sf.jguard.authorization package
- rename some classes
- update hasRole tag to support multiple role ('roles' attribute replace 'name') associated with another
new attribute('operator') wich support three values ('ANY','ALL','NONE')
- add authorization jGuard API with the PostgreSQL implementation (XML will be provided in the beta2
release, mysql in the beta3, and oracle in the final release)
- add authorization webapp example to manage domains, permissions,roles (CRUD operations on each one),
and associate roles with their domains and permissions. all these operations can be done on the fly.

the main jGuard features are :
- clean separation of concerns: authentications are defined by the server administrator and
and authorizations are defined by webapp developers
- relies only on java 1.4 and j2ee 1.3 or higher
- can be adapted on any webapp, on any application server
- does not depend on a web framework, or an AOP framework
- build on top of the very secure and flexible JAAS(http://java.sun.com/products/jaas/)
- authentications and authorizations are handled by pluggable mechanisms
- changes take effects 'on the fly' (dynamic configuration)
- each webapp has its own authentications and authorizations configuration
- authentications can be configured through XML or databases (Oracle, MySQL,PostgreSQL)
- support encryption in authentication
- authorizations can be configured through XML or databases(Oracle, MySQL,PostgreSQL)
- a taglib is provided to protect jsp fragment
- support security manager

future 0.70 feature:
- add a management api for authentications (on XML and databases)

a webapp example(called 'jGuardExample') is provided to quickly test jGuard (via Xml configuration files, or Database with SQL scripts provided).
you can find
documentation is provided under the doc/jguard.sourceforge.net/ directory (look at the index.html file with your browser).

this project is released under the GPL licence.

every users and project members are welcomed!

the jGuard homePage on sourceforge:
http://sourceforge.net/projects/jguard/

the jGuard documentation:
http://jguard.sourceforge.net

jGuard forums are open:
http://sourceforge.net/forum/?group_id=107276

2 mailing-list are provided:
- jguard-announce@lists.sourceforge.net
- jguard-users@lists.sourceforge.net

easy JAAS integration for j2ee has gone!

charles(jGuard team).

Posted by Charles Lescot 2005-04-07

Log in to post a comment.