| The J2EE framework have obtained great achievements in recent years, it is as an engine of enterprise applications and drives them powerfully. But at the same time, some disadvantages exposed themselves to the market, especially the high cost of development and maintenance for the enterprise applications which use EJB technology. In that case, some greate excellent open source projects disappear in java community. The spring framework is one representative of these which they are trying to bring in some new ideas and methods to solve these problems. With dozens of new techenologies used, such as AOP, IOC, and WEBSERVICE, the model and design of web application are changed.In the field of web security framework, AOP makes the security module has lower coupling with system. Security module is independent of system and can be developed separately. ACEGI security framework is a representative of new security framework. Based on the SPRING'S IOC and AOP, the ACEGI almost can satisfy any security requirement without any code added for the system. In the practice it has got widely used.First of all, the summarized of fresh thoughts or functions in J2EE field will be introduced. And further content is the details of the modules which realize the thoughts or functions. I will expound the realization of IOC, AOP, SPRING and etc. secondly I will introduce some exist framework of the security framework, such as JAAS, SSO and RBAC and so on. Finaly according to my practice, I will share my experience of using ACEGI in the project, and give a improvement about it to satisfy the requirements. |
PDF Full Text Request