Progress
I got there eventually - there is now a working version of the V7 code, which integrates Vaadin 7, Guice 3.0 and Apache Shiro 1.2.
V7 supports the direct coding of interaction with Shiro, and also the use of Shiro annotations. If you are not familiar with Shiro then it is worth taking a look. It greatly simplifies one of those time-consuming development tasks - authentication and authorisation.
Path filtering
The one aspect I have not been able to integrate is the Shiro path filter to apply security according to the URL. A great idea, and something which could greatly reduce maintenance, but clearly will not work with an AJAX application.
I need to do some more work on that ...
General code state
I have done quite a bit to tidy up the code, especially for testing. The test harness is reasonable now, and allows quite a bit of testing of the Vaadin UI, and also incorporates Shiro.
But pretty it is not! I really have not done justice to Vaadin with the user interface, but just now I am more concerned about function.
Sadly, the documentation has fallen behind a bit, but I have opened a forum for anyone interested. Comments at the forum, or on this blog would be welcome.
No comments:
Post a Comment