Security Context Persistence Filter request Logout Filter web
스프링 시큐리티 아키텍처 Security. Context Persistence. Filter request Logout. Filter web. xml Delegating Filter. Proxy Servlet/JSP Security. Context Repository Http. Session. Security. C ontext. Repository Filter. Chain Proxy Username. Password. A uthentication. Filter Default. Login. Page Generating. Filter Basic. Authentication Filter Request. Cache Aware. Filter Security. Context. Holder Aware. Request. Filter Anonymous Authentication. Filter Session. Management Filter Exception Translation. Filter. Security Interceptor Security. Context Impl Authentication Username. Password Authentication. Token Authentication Provider Authentication Manager Provider. Manager Dao. Authentication Provider User. Details. Service In. Memory. Dao. Impl Access. Decision Manager Affirmative. Based User. Details User Granted Authority. Impl
OAuth 소개
Process Flow 인화 요청 get REQUEST_TOKEN (consumer-key, -secret, callback url) return REQUEST_TOKEN redirect: authorize (request_token) authenticate(security) authorize (request_token) CALLBACK URL (request_token, verifier) redirect: CALLBACK URL (request_token, verifier) get ACCESS_TOKEN (request_token, verifier) return ACCESS_TOKEN, SECRET get PROTECTED_RESOURCES (access_token, secret) return PROTECTED_RESOURCES Transport Layer 결과 화면
OAuth References • OAuth Community Site http: //oauth. net/ �Beginner’s Guide to OAuth http: //hueniverse. com/oauth/ �IETF Specification RFC 5849: The OAuth 1. 0 Protocol ▪ http: //tools. ietf. org/html/rfc 5849 RFC 5849: The OAuth 2. 0 Protocol (draft) ▪ http: //tools. ietf. org/html/draft-ietf-oauth-v 2 -10
Tonr & Sparklr Tonr – Service Consumer (=beppa) Sparklr – Service Provider (=faji) Tonr Sparklr Transport Layer
Spring-Security-OAuth http: //spring-security-oauth. codehaus. org/ http: //static. springsource. org/spring-security/oauth/index. html
Consumer & Provider 구현 Spring Security OAuth (Provider) Spring Security OAuth (Consumer) Provider Consumer Transport Layer
- Slides: 32