Alex (Migrated from SEC-1551) said:
OpenId support in spring is great, it would be even better to have the possibility to manage also facebook users.
I understand FB use the oauth 2.0 protocol and for that purpose, as using openid4java to implement openif, it could be used http://spring-security-oauth.codehaus.org/tutorial.html to officially implement it in spring security
For reference, another project that made some work in this direction :
Just another note for the records: twitter has now turned on using solely OAuth for authentication and that would be another interesting plus.
Luke Taylor said:
The spring-security-oauth code is already hosted on the SpringSource git server: http://git.springsource.org/spring-security. It will remain as an independent project rather than being added to the core.
For Facebook support, you probably want to look at Spring Social: http://git.springsource.org/spring-social.