保护你的所有 web 应用程序和 web 服务的 Java 安全框架。
适用于大多数框架/工具(实现):
- JEE
- Spring Web MVC (Spring Boot)
- Spring Webflux (Spring Boot)
- Shiro
- Spring Security (Spring Boot)
- CAS server
- Syncope
- Knox
- Play 2.x
- Vertx
- Spark Java
- Ratpack
- JAX-RS
- Dropwizard
- Javalin
- Pippo
- Undertow
- Lagom
- Akka HTTP
- Jooby
支持大多数认证机制:
- OAuth (Facebook, Twitter, Google...)
- SAML
- CAS
- OpenID Connect
- HTTP
- Google App Engine
- LDAP
- SQL
- JWT
- MongoDB
- CouchDB
- IP address
- Kerberos (SPNEGO)
- REST API
及授权机制:
- Roles/permissions
- Anonymous/remember-me/(fully) authenticated
- CORS
- CSRF
- HTTP Security headers