cocoon-users mailing list archives

Site index · List index
Message view « Date » · « Thread »
Top « Date » · « Thread »
From "Wilson, Colin" <>
Subject RE: Authentication Components
Date Wed, 15 Oct 2003 06:51:34 GMT
I think it means that you CAN pass information there (like maybe a
public key or something), but information from the person who is trying
to get authenticated is passed like shown in the examples 'userid' and

<map:match pattern="login">
  <map:act type="auth-login">
    <map:parameter name="handler" value="portalhandler"/>
    <map:parameter name="parameter_userid"
    <map:parameter name="parameter_password"
    <map:redirect-to uri="authentication-successful"/>
  <!-- authentication failed: -->
  <map:generate src="auth_failed.xml"/>
  <map:transform src="tohtml.xsl"/>

However I am having trouble using this information in an xsp page
myself. Anyone know how this is done?

-----Original Message-----
From: Ralph Goers [] 
Sent: 14 October 2003 17:18
To: ''
Subject: RE: Authentication Components

Thanks, Carsten.  

Is there an example of accessing the user data somewhere?  Is the
information about the user obtained from the handler resource?

Some other things I am unclear on:

The doc says the authentication resource can be a Java class. How is
that done?

The last sentence in section 3.3 says "This data node is then added
inside the "login" tag of the login resource (see previous chapter)."
Assuming you really mean section 3.2 instead of chapter (the previous
chapter would be chapter 2. Sitemap components), I can't find any
mention of a login tag.

In section 3.2 there is a paragraph that reads:
"This redirect-to document is an unprotected document in the sitemap.
For tracking which document was requested, the redirect-to document gets
the request parameter "resource" with the value. In addition, all
parameters specified inside the redirect-to tag of the handler
configuration are passed to the document." 

First, I assume the second sentence should end with "the value of the
redirect-to uri attribute". Second, I am confused by the last sentence
of the paragraph. It leads me to believe I should code:

<handler name="unique">
  <redirect-to uri="cocoon:loginpage">
    <map:parameter name="parm1" value="value1"/>

However, I see no examples coded like this. I assume something else is
meant here.


> -----Original Message-----
> From: Carsten Ziegeler []
> Sent: Monday, October 13, 2003 10:47 PM
> To:
> Subject: RE: Authentication Components

> >
> The authentication framework makes all information about a user, like 
> e.g. the role available in the sitemap via the actions. You can then 
> simply use the parameter selector to test a value provided
> by the auth-protect action against a value.
> Carsten

To unsubscribe, e-mail:
For additional commands, e-mail:

To unsubscribe, e-mail:
For additional commands, e-mail:

View raw message