| |
The Commons Core Library Security Service
Most companies think security is about protecting servers and networks using firewalls and encryption using SSL. While that's a must, it's only a start. The majority of hacking that occurs takes place at the application level which means data protection and security code must be built into the application itself.
Generate all the important Security Components
NEFS' Commons Core Library Security Service automatically generates all the important application security features such as role-based access control, fine-grained hierarchical permissions, login forms, and automatic sign-out.
Manage your Application Security in One Place
NEFS's Security Service is centrally managed at the MVC layer and can be added at any time during the development process. Individual developers can count on "base-level" security and only be worried about adding on top of it.
- Sub-sites and multiple modules may share a common security scheme or create their own.
- Because all NEFS security is declarative, you can generate reports of application components that are not secured properly.
Supports User Lockouts
If your application has rules for locking a user out after a specified number of invalid login attempts, you can turn on the feature without any Java code. You may provide plug-in classes that will be called when lockouts occur.
Overview of Commons Security Service Tags
Commons defines and processes numerous, very high-level, tags that you use to declare security components.
Additional NEFS Security Service Features
- Automatic login forms with no HTML or Java required
- "Remember my login" ability to allow users to store encrypted cookies and only login once
- Database authentication
- Custom authenticators (integrate with JAAS, allow single sign-in using directory services)
- Role-based access control
- Hierarchical fine-grained permissions (protect at field or column levels)
- Automatic log-off
- Encrypted Password Storage
|
