Re: Catalyst or other frameworks in a security critical context

What would you recommend?

Catalyst::Plugin::RequireSSL

Is Catalyst mature enough to be used in such a setting?

Yes.

If not, is there another system that may seem suitable?

Yes, but none as fast as Catalyst:-).

An example:

#!/usr/bin/perl

use strict;
use warnings;
use Catalyst;
MyApp->setup( qw/RequireSSL/ );

My App->config->{require_ssl} = {
             https => 'secure.mydomain.com',
             http   => 'www.mydomain.com',
             remain_in_ssl => 1,
                         no_cache => 1;
};
[download]

Just add this to each controller method:

$c->require_ssl;
[download]

Comment on Re: Catalyst or other frameworks in a security critical context Select or Download Code