This is a very simple application to demonstrate the Acegi Security System for Spring. The application manages contacts, partitioned based on the user that owns them. Users may only manage their own contacts, and only users with ROLE_SUPERVISOR are allowed to delete their contacts. The application automatically extracts the principal from the web container (which should be configured with a suitable Acegi Security System for Spring adapter). It also demonstrates how to configure server-side secure objects so they can only be accessed via a public facade.
This application also demonstrates a public method, which is used to select the random contact that is shown below: