Daily Archives: September 22, 2007

Some Thoughts on Securing Web Resources

Lately I’ve been trying to figure some figure out some new ways to define declarative security constraints to web resources. Here’s the a use case that popped into my head a while back: suppose you have a service to access a persons information on a social networking site such as: http://mysocialnetwork.foo/people/12345 This service offers two levels of membership: free and… Read more →