详述 Spring Security 安全框架
Spring Security 是一个基于 Spring 的安全框架,为 Web 应用安全提供了完整的解决方案。 一般来说,Web应用的安全包括两部分:用户认证和用户授权。 用户认证是指验证用户是否是系统中的合法主体,即用户是否可以访问系统。 用户认证一般需要用户提供用户名和密码,系统通过验证用户名和密码来完成认证过程。 用户授权是指验证用户是否具有执行操作的权限。 在一个系统中,不同的用户拥有不同的权限。 一般来说,系统会为不同的用户分配不同的角色,每个角色对应一系列的权限。 本课程详细阐述Spring Security的安全框架,通过案例带你快速学习和掌握Spring Security。(Spring security is a spring based security framework that provides a complete solution for web application security. Generally speaking, the security of web application includes two parts: user authentication and user authorization. User authentication refers to verifying whether the user is a legal subject in the system, that is, whether the user can access the system. User authentication generally requires the user to provide the user name and password. The system completes the authentication process by verifying the user name and password. User authorization refers to verifying whether a user has permission to perform operations. In a system, different users have different permissions. Generally speaking, the system assigns different roles to different users, and each role corresponds to a series of permissions. This course describes the security framework of spring security in detail, and takes you to quickly learn and master spring security through cases.)
页:
[1]