Apache Shiro 英文摘抄
1 Are you frustrated [frʌstreitId懊丧; 懊恼; 沮丧]when you try to secure your applications?
2 This article introduces Apache Shiro, a Java security framework that provides a simple but powerful approach to application security.
3 Shiro provides the application security API to perform the following aspects[ˈæˌspɛkts方面; 层面; 样子; 外观] (I like to call these the 4 cornerstones[ˈkɔrnərˌstoʊnz 基石; 奠基石; 最重要部分; 基础] of application security):
- Authentication [ɔːˌθentɪˈkeɪʃn身份验证; 认证;鉴定] - proving user identity, often called user ‘login’.
- Authorization [ˌɔːθərəˈzeɪʃn批准; 授权;] - access control.
- Cryptography[krɪpˈtɑːɡrəfi加密] - protecting or hiding data from prying eyes [ˈpraɪɪŋ aɪz窥视眼睛].
- Session Management - per-user time-sensitive [ˈsensətɪv敏感] state.
4 we were pretty much[差不多; 基本上] stuck with[无法摆脱] the Java Authentication and Authorization Service, otherwise[另; 亦] known as JAAS. There were a lot of shortcomings[缺点、短处] with JAAS - while its authentication capabilities were somewhat tolerable[ˈtɑːlərəbl可忍受], the authorization aspects were obtuse [əbˈtuːs] and frustrating [ˈfrʌstreɪtɪŋ] [迟钝和令人沮丧] to use. Also, JAAS was heavily tied to[严重束缚] Virtual Machine-level security concerns[kənˈsɜːrnz担心,忧虑].
5 I needed something[会话] that could be decoupled [diːˈkʌpld分离,隔断] from[与…脱钩] the container, usable[ˈjuːzəbl可用的; 适用的] in any environment I chose.
6 I was hoping for a cleaner out-of-the-box solution[开箱即用的解决方案] to easily encrypt and decrypt data as necessary[ˈnesəseri].
7 So looking at[考虑、因此] the security landscape[安全形势] of early 2003, you can quickly realize that there was nothing that could satisfy all of those requirements in a single, cohesive [koʊˈhiːsɪv使凝结的] framework. Because of that, JSecurity, and then later, Apache Shiro, was born.
8 a compelling reason[kəmˈpelɪŋ ˈriːzn] 不容不信的理由
9 Why would you use Apache Shiro today?
Easy To Use: Ease of use is the project’s ultimate [ˈʌltɪmət最终的; 终极的;根本的; 基本的] goal. Application security can be extremely confusing and frustrating and thought of as a ‘necessary evil’ [ˈnesəseri ˈiːvl罪恶之源].
. Comprehensive[ˌkɑːmprɪˈhensɪv全面的、详尽的; 综合性的] - There is no other security framework with the breadth [bredθ宽度; 广度;广泛] of scope that Apache Shiro claims[kleɪmz宣称; 声称; 断言; 声明], so it can likely be your ‘one stop shop’ [wʌn stɑːp ʃɑːp] 一站式服务; 一次购足; 一站式商店 for your security needs.
Flexible[ˈfleksəbl灵活的; 可变动的;] - Apache Shiro can work in any application environment.
Web Capable [ˈkeɪpəbl能力; 有才能; 能力强的; 足以胜任的] - Apache Shiro has fantastic[fænˈtæstɪk极好的; 了不起的; 很大的] web application support, allowing you to create flexible security policies[灵活的安全策略] based on application URLs and web protocols (e.g. REST), while also providing a set of JSP libraries to control page output.
Pluggable [ˈplʌgəbl可插式] - Shiro’s clean API and design patterns make it easy to integrate with [ˈɪntɪɡreɪt wɪð与…结合在一起] many other frameworks and applications. You’ll see Shiro integrated seamlessly[无缝的;无缝] with frameworks like Spring, Grails, Wicket, Tapestry, Mule, Apache Camel, Vaadin, and many others.
Supported[səˈpɔːrtɪd拥护; 鼓励; 援助; 资助] - Apache Shiro is part of the Apache Software Foundation, an organization proven [ˈpruːvn 被证明的; 已证实的] to act in the best interest of its community. The project development and user groups have friendly citizens ready
to help.
10 Core Concepts [kɔːr ˈkɑnsɛpts核心概念]: Subject, SecurityManager, and Realms
11 the most relevant [ˈreləvənt紧密相关的; 有价值的; 有意义的] questions.
12 Acquiring [əˈkwaɪərɪŋ(通过努力、能力、行为表现) 获得; 购得; 获得; 得到] the Subject
13 behind the scenes [bɪˈhaɪnd ðə sinz] 幕后 counterpart [ˈkaʊntərpɑːrt职位(或作用)相当的人; 对应的事物]
******以上翻译原文摘自:https://www.infoq.com/articles/apache-shiro
Apache Shiro 英文摘抄相关推荐
- Spring Security 和 Apache Shiro
点击蓝色"程序猿DD"关注我 回复"资源"获取独家整理的学习资料! 前言 web应用达到生产需要就必须有安全控制.java web领域经常提及的两大开源框架主要 ...
- 让 Apache Shiro 保护你的应用
让 Apache Shiro 保护你的应用 作者:Les Hazlewood 译者:胡伟红 查看英文原文: Application Security With Apache Shiro 在尝试保护你的 ...
- 分布式平台下的HS(High-Security) --Apache Shiro API(介绍)
在尝试保护你的应用时,你是否有过挫败感?是否觉得现有的Java安全解决方案难以使用,只会让你更糊涂?本文介绍的Apache Shiro,是一个不同寻常的Java安全框架,为保护应用提供了简单而强大的方 ...
- Apache Shiro 使用手册
2019独角兽企业重金招聘Python工程师标准>>> 很好的学习资源,谢谢kdboy博主! Apache Shiro 使用手册(一)Shiro架构介绍 http://kdboy ...
- SpringMVC+Apache Shiro+JPA(hibernate)案例教学(二)
2019独角兽企业重金招聘Python工程师标准>>> 一.Shiro配置的简要说明. <!-- 項目自定义的Realm --><bean id="shi ...
- 解决org.apache.shiro.session.UnknownSessionException: There is no session with id的问题
解决org.apache.shiro.session.UnknownSessionException: There is no session with id的问题 参考文章: (1)解决org.ap ...
- Apache Shiro 使用手册(三)Shiro 授权
2019独角兽企业重金招聘Python工程师标准>>> 一.授权的三要素 授权有着三个核心元素:权限.角色和用户. 权限 权限是Apache Shiro安全机制最核心的元素.它在应用 ...
- Apache Shiro教程
跟开涛学系列: 来自开涛的Apache Shiro教程:http://jinnianshilongnian.iteye.com/blog/2018398 附带的代码例子:https://github. ...
- Apache Shiro 1.6.0 发布!修复绕过授权高危漏洞
点击上方蓝色"程序猿DD",选择"设为星标" 回复"资源"获取独家整理的学习资料! 作者 | 冷冷zz 来源 | https://www.o ...
- apache shiro jar包_只需要6个步骤,springboot集成shiro,并完成登录
小Hub领读: 导入jar包,配置yml参数,编写ShiroConfig定义DefaultWebSecurityManager,重写Realm,编写controller,编写页面,一气呵成.搞定,是个 ...
最新文章
- 实例分析mysql用户登录
- 透视映射和射影映射的关系 Perspective and Projectivity
- 创建世界级品牌的大师忠告
- hikaril连接sql2000_hikari连接池解析(版本:HikariCP-2.5.1.jar)
- Docker---问题1:bash: vi: command not found/bash: vim: command not found
- Linux里10个最危险的命令
- 一台服务器装两个sql server 如何访问吗_服务器多网卡多路由策略
- 接口的基本演练 java
- 洛谷——P2299 Mzc和体委的争夺战
- php变量在html调用函数调用,PHP_如何在html标记中调用的函数里传递对象,最近使用jquery结合Ajax开发一个 - phpStudy...
- Deno 是面向代码的浏览器?
- 关于服务器耗电量的计算
- python给定dna等分成两个序列_分析DNA序列中的串联重复序列
- 在Apache中隐藏Php文件后缀
- 从shell(终端)中退出python
- 计算机休眠唤醒后 网络受限,Windows 10中的睡眠/唤醒/休眠状态后,Wi-Fi网络消失...
- Python教程: ‘==‘ 与‘is‘ 以及它们背后的小秘密
- 水利水电课程指导之建筑制图基础_第一章1.3 平面图形的尺寸标注
- 【渝粤教育】电大中专新媒体营销实务_1作业 题库
- 通过Git同步Obsidian与IOS