Skip to content

Made in the European Union · Independently built · Released under EUPL 1.2

Sentinel for Java Documentation Consulting Sponsor

CTRL K

CTRL K

Documentation
Consulting
Sponsor

Quick Start
Vaadin Integration
Standalone Integration
REST Integration
Architecture
Bootstrap
Logout Flows
Security Audit
Brute-Force Protection
Session Policy
Roadmap
- v00.70.00 — Planned
- v00.80.00 — Planned
Release Notes
- 00.51.00
- 00.60.00

Documentation

Build the library and run the four reference demos.

Vaadin Integration

Secure Vaadin views with annotations, SPI services, and access evaluators.

REST Integration

Secure REST handlers with subject resolution, permission annotations, and the authorization filter.

Standalone Integration

Secure plain Java services with Secured.wrap(…) — same annotations, no framework. CLI / desktop / batch apps.

Modules, package layout, decision model, SecurityServiceResolver, reusable building blocks, mutation coverage.

First-run mechanism for creating the very first administrator account.

LogoutService.logout(SubjectId, LogoutScope) — current session or every session of the subject.

SecurityAuditService + 16 sealed AuditEvent types, ring-buffer sink, Vaadin /audit route, REST /api/audit.

Brute-Force Protection

LoginAttemptPolicy with lockout UI in Vaadin and 429 + Retry-After in REST.

Idle / absolute lifetime + session-id rotation after login.

What’s delivered and what’s still open.

What changed in 00.60.00 — new adapters, SPIs, audit pipeline, mutation push.

© 2026 Sven Ruppert · jSentinel — Sentinel for Java · 🇪🇺 Made in the European Union · EUPL 1.2