Shiro. Apache Shiro is a powerful and easy-to-use Java security framework that performs authentication, authorization, cryptography, and session management. With Shiro’s easy-to-understand API, you can quickly and easily secure any application – from the smallest mobile applications to the largest web and enterprise applications. Authentication Support logins across one or more pluggable data soucres (LDAP, JDBC, Active Directory... Read More >>> An Introduction to Shiro. Introduction NOTE: Updated in November 2013.
I recently took over a project that used Apache Shiro for web application security. Shibboleth® Shibboleth Wiki. Shibboleth is a single sign-on (log-in) system for computer networks and the Internet.
It allows people to sign in using just one identity to various systems run by federations of different organizations or institutions. The federations are often universities or public service organizations. The Shibboleth Internet2 middleware initiative created an architecture and open-source implementation for identity management and federated identity-based authentication and authorization (or access control) infrastructure based on Security Assertion Markup Language (SAML).
Federated identity allows the sharing of information about users from one security domain to the other organizations in a federation. This allows for cross-domain single sign-on and removes the need for content providers to maintain user names and passwords.