Over a million developers have joined DZone.

OACC 2.0 Java Application Security Framework: Expanded Database Support

OACC 2.0 comes with beefy new database support. Check out this Java Security Framework's list of enhancements and improvements.

· Database Zone

Build fast, scale big with MongoDB Atlas, a hosted service for the leading NoSQL database. Try it now! Brought to you in partnership with MongoDB.

The latest release candidate of the open source OACC Java™ Application Security Framework (OACC v2.0.0-rc.4) is available at oaccframework.org and now supports several new databases. The complete list of supported databases is:

  • HSQLDB 2.3

  • IBM DB2 10.5

  • Microsoft SQL Server 12.0 (2014)

  • MySQL 5.6 / MariaDB 10.0

  • Oracle 11g R2

  • PostgreSQL 9.3

  • SQLite 3.8

Prior to this release, OACC made use of certain database features (such as recursive CTEs  and sequence generators) that aren't supported in all database systems. Now OACC supports auto-incrementing identity columns and non-recursive querying, which enables persisting the security relationships in many more RDBMS implementations.

Summary of changes for this release candidate:

  • adds implementation strategies to handle databases that do not support recursive queries or sequence generators

  • adds SQL dialect support for MySQL/MariaDB, HSQLDB, and SQLite

The full release notes are available at http://oaccframework.org/downloads.html.

What is OACC?

OACC is a permission-based application security framework for Java™ that provides authentication and authorization services.
It supports hierarchical security domains, super users, permission inheritance and impersonation. OACC is more powerful than ACL with groups, allows modeling of hierarchical symmetric RBAC and has no container dependencies.

In a nutshell, OACC allows your application to enforce security by answering the question:

 Is entity ‘A’ allowed to perform action ‘p’ on entity ‘B’?

The key design goals of OACC are:

  • simplify the maintenance of complex, real world security topologies

  • allow both fine and coarse grained access control

  • support logical security domains for use in multi-tenant application architectures

  • facilitate flexible permission delegation control

  • programmatically and dynamically manage permissions

OACC is open source software released under the commercial friendly Apache License, Version 2.0.

More information about OACC, including the latest Javadocs, releases, and tutorials, is available at oaccframework.org.

Now it's easier than ever to get started with MongoDB, the database that allows startups and enterprises alike to rapidly build planet-scale apps. Introducing MongoDB Atlas, the official hosted service for the database on AWS. Try it now! Brought to you in partnership with MongoDB.

java security,java framework,opensource,java

The best of DZone straight to your inbox.

Please provide a valid email address.

Thanks for subscribing!

Awesome! Check your inbox to verify your email so you can start receiving the latest in tech news and resources.

{{ parent.title || parent.header.title}}

{{ parent.tldr }}

{{ parent.urlSource.name }}