img
such as auditing and obscenity filtering, that you would not expect to see in a traditional blog application
but that are useful features nonetheless and provide a way to highlight certain features of the Spring
Framework.
This section provides a full rundown of the features included in the SpringBlog application.
Security and Authentication
Like most other blog applications, the SpringBlog application provides security controls that prevent
unauthorized users from creating and editing blog entries.
As you can see in Figure 3-1, the SpringBlog application provides a login form for users to sign in
and identify themselves as valid and registered users of the application.
Figure 3-1. User identity in SpringBlog
However, login is not required for viewing blog entries. In SpringBlog, you are assigned the
Anonymous identity automatically. Using the login function, you can validate your details against the
user list in the database and assign yourself a different identity. Internally, SpringBlog uses this identity
for security access control, and the user information will also be used in the audit process.
The security control requirements are as follows:
Anonymous users are allowed only to view blog entries.
·
Search WWH :
Custom Search
Previous Page
Spring Framework 3 Topic Index
Next Page
Spring Framework 3 Bookmarks
Home