THIS IS A TEST INSTANCE. ALL YOUR CHANGES WILL BE LOST!!!!
...
- Examine the application structure and the features of the existing authorization system, built using the Spring Acegi framework. Understand, what types of security filters are used and how they can be replaced. Outline, what features to change and what to edit in the existing system.
- Examine what technologies and frameworks to use in this project (JSF, Struts). Java Server Faces technology will be used for writing the code for client/server collaboration in the web application.
- Plan the main functionality of the project and install required libraries to the system.
- Release the main functionality - add necessary classes and scripts.
- Change the visual interface of the application (add authentication prompt to ask users for their OpenID identifier rather than their username and password).
- Release the option of storing users' preferences indicating whether they want to approve the authentication with the website 'temporarily', 'always' or 'not at all'.
- Explore ways to establish a shared-secret with the OpenID provider (it is the alternate way of security protection - in Spring Acegi technology it is provided by Filters), through association from the application and write scripts that allow the system to redirect user's identifiers to the OpenID Provider and receive response.
- Test the system and write necessary documentation. f
Timeline
- 26th of May
- Initial planning of the project and research
- Deliverable: Document of detailed description of the project.
...