ABSTRACT: Easy Application Security with Apache Shiro
Apache Shiro is one of the largest open-source application security frameworks available, and with the recent release of Shiro 1.2, over 10,000 new instances launch every month. Shiro supports the four cornerstones of application security: authentication, authorization, enterprise session management, and cryptography. Shiro 1.2 extends the tools, core and especially web functionality of Shiro, and adds extensive support modules.
Apache Shiro PMC Chair and Stormpath Founder/CTO, Les Hazlewood, will give a code-heavy overview of the framework, including…
– How to enable all four cornerstones for any application (standalone, mobile phone, web based, etc) – An overview of how Shiro leverages OAuth, SAML, and Tapestry – Why you might want to use Shiro instead of alternatives likeJAAS or Spring Security – An overview of Shiro’s innovative web support module and security filtering capabilities – The core architectural concepts of the framework – What’s new in Shiro 1.2
SPEAKER BIO: Les Hazlewood, CTO Stormpath
Les Hazlewood is co-founder and CTO of Stormpath and the Apache Shiro PMC Chair. Prior to forming Stormpath, he held senior architectural positions at Bloomberg and Delta Airlines and he was former CTO of a software engineering firm supporting educational and government agencies. Les has been actively involved in Open Source development for more than 10 years, committing or contributing to projects like the Spring Framework, JBoss, and of course Apache Shiro. Les has a BS in Computer Science from Georgia Tech, currently lives in San Mateo, CA and practices Kendo and studies Japanese when he’s not banging out code.
Intro to Apache Shiro (PDF)