JPA Security · JPA Security is an Access Control Solution for the Java Persistence API (JPA). With JPA Security your access control can be performed in the database. You may query the database for all objects of a certain type and will receive only the objects you have read access for. This filtering is performed in the database. Unaccessible queried objects will not be loaded into memory. JPA Security enables you to completely remove security-related code from your code-base. All access control may be configured via Annotations or XML. With JPA Security you do not have to change your access control paradigm (but maybe you want to, when you see the great capability of JPA Security). You even can mix access control paradigms easily. JPA Security is not designed to replace current security solutions, but to extend them. It integrates smoothly into the security mechanisms of the Java EE Platform, but may be used with third-party frameworks like Spring Security or in Java SE, too. With the extensibility of JPA Security it is easy to provide your own access control paradigm, access rules storage or login mechanism.
