SECURADSL - A DOMAIN-SPECIFIC LANGUGAGE FOR RAPID CONFIGURATION OF SECURITY ASPECTS IN THE SPRING FRAMEWORK
DOI:
https://doi.org/10.24867/25BE11HrnjakKeywords:
Domain-Specific Languages, Model-Driven Software Development, Web Applications modeling, Security ConfigurationAbstract
In this paper, we present securaDSL, a domain-specific language designed for modelling Spring applications with security configuration supporting three security mechanisms: Basic Authentication, JWT and OAuth2.0. Additionally, we present multiple generators that produce executable code based on models created using the securaDSL. The utilization of this domain-specific language and generators simplifies, accelerates, and enhances the quality of work for domain experts in the field of software security configurations. For the development of the meta-model, we used Eclipse Modeling Framework environment, utilizing the Ecore language for meta-modeling. To create the textual syntax, we used the Xtext framework, while we implemented generators using the Java programming language and Xtend language.
References
[2] Maple, S., & Binstock A. (2018). JVM Ecosystem Report 2018: About your Platform & Application. [Online], Приступљено датума: 31.8.2023. https://snyk.io/blog/jvm-ecosystem-report-2018-platform-application/
[3] Brambilla, M., Cabot, J., & Wimmer, M. (2012). Model-driven software engineering in practice.
[4] Spring Initializer. [Online], Приступљено датума: 31.8.2023. https://start.spring.io/
[5] Šuljkanović, A., Milosavljević, B., Inđić, V., Dejanović, I. (2022). Developing Microservice-Based Applications Using the Silvera Domain-Specific Language
[6] Terzić, B., Dimitrieski, V., Kordić, S., Milosavljević, G., Luković, I. (2017). MicroBuilder: A Model-Driven Tool for the Specification of REST Microservice Architectures
