Each web-application usually has some security: users, roles, permissions. When your organization posesses several systems, a situation may arise when the same user has to present in several systems at once. It is a burden to maintain users/roles/permissions in different systems at the same time. Superfly intends to alleviate such a burden.
- It allows you to register users on a central server and give them permissions there.
- It integrates seamlessly with spring-securiry.
- It exposes its APIs so you're not tied to spring-security integration.
- Redirect-based mode is supported which enables user to enter password once and then be authenticated to all the systems.
- No-redirect mode is supported, in which user does not even know that some central server authenticates them.
- Jira integration is provided (so you can control Jira's users permissions in the same way, from the central server).
Single Sign-on (SSO) based on redirects is implemented. Full spring-security integration is included.
All HttpClient timeouts are made configurable; default timeouts are configured which eliminates a freeze possibility.
All dynamically-generated URLs are made compatible with nginx mod_security module.
Thanks to JProfiler for their wonderful Java profiler.