Apache Shiro
Themis
Our great sponsors
Apache Shiro | Themis | |
---|---|---|
4 | 2 | |
4,257 | 1,808 | |
0.5% | 0.8% | |
9.5 | 5.9 | |
4 days ago | 4 months ago | |
Java | C | |
Apache License 2.0 | Apache License 2.0 |
Stars - the number of stars that a project has on GitHub. Growth - month over month growth in stars.
Activity is a relative number indicating how actively a project is being developed. Recent commits have higher weight than older ones.
For example, an activity of 9.0 indicates that a project is amongst the top 10% of the most actively developed projects that we are tracking.
Apache Shiro
-
Serverless Apache Zeppelin on AWS
The only missing feature in this architecture is the login and logout capability. In this case, Apache Zeppelin provides Shiro for notebook authentication. Apache Shiro is a powerful and easy-to-use Java security framework that performs authentication, authorization, cryptography, and session management. Here, you can find a step-by-step guide about how Shiro works. This example uses the default configuration.
-
Reaper 3.0 for Apache Cassandra is available
Shiro 1.8.0
- Apache Shiro
-
Libraries, Frameworks and Technologies you would NOT recommend
Apache Shiro is another security framework. I haven't tried it out myself, but I was sorely tempted to when trying to set up Spring Security.
Themis
- Themis: Strong, usable cryptography for busy people
-
Backstage: cryptographic R&D internship at Cossack Labs
Now, the real world work starts. We introduce interns to the world of popular cryptographic libraries, help them to make their first OSS contributions, and let them practice with our cryptographic library Themis which provides a high-level crypto API on 14 languages.
What are some alternatives?
Keycloak - Open Source Identity and Access Management For Modern Applications and Services
DOMPurify - DOMPurify - a DOM-only, super-fast, uber-tolerant XSS sanitizer for HTML, MathML and SVG. DOMPurify works with a secure default, but offers a lot of configurability and hooks. Demo:
Spring Security - Spring Security
tweetnacl-java - TweetNaCl in Java - a port of TweetNaCl-js
pac4j - Security engine for Java (authentication, authorization, multi frameworks): OAuth, CAS, SAML, OpenID Connect, LDAP, JWT...
cryptography - cryptography is a package designed to expose cryptographic primitives and recipes to Python developers.
jCasbin - An authorization library that supports access control models like ACL, RBAC, ABAC in Java
snyk - Snyk CLI scans and monitors your projects for security vulnerabilities. [Moved to: https://github.com/snyk/cli]
Bouncy Castle - Bouncy Castle Java Distribution (Mirror)
NeDB - The JavaScript Database, for Node.js, nw.js, electron and the browser
OACC Framework - OACC (Object ACcess Control) is an advanced Java Application Security Framework
Paramiko - The leading native Python SSHv2 protocol library.