Re: [security-dev] Securing TicketMonster with PicketBox Core
Hi Anil,
This looks like a great start. I see that there are quite a few TODO items on the list.
Any timeline on them?
Here's thought. I think AJAX security can be split into either:
a) REST endpoint security (which goes back to securing the REST endpoint classes)
b) URL security
Now for the former, I think we should use the DeltaSpike @Secured facilities (I don't
know exactly in what state they are right now, as existing stuff is interspersed with
roadmap stuff in my head right now).
Marius
On 2012-07-27, at 11:29 AM, Anil Saldhana <Anil.Saldhana(a)redhat.com> wrote:
https://docs.jboss.org/author/display/SECURITY/TicketMonster
We can discuss about it here.
_______________________________________________
security-dev mailing list
security-dev(a)lists.jboss.org
https://lists.jboss.org/mailman/listinfo/security-dev