cxf-dev mailing list archives

Site index · List index
Message view « Date » · « Thread »
Top « Date » · « Thread »
From Oliver Wulff <owu...@talend.com>
Subject RE: fediz idp auth
Date Thu, 23 Aug 2012 21:09:27 GMT
I've raised issue https://issues.apache.org/jira/browse/FEDIZ-23

Let us know whether this fulfills your requirements.

------

Oliver Wulff

Blog: http://owulff.blogspot.com
Solution Architect
http://coders.talend.com

Talend Application Integration Division http://www.talend.com

________________________________________
From: Colm O hEigeartaigh [coheigea@apache.org]
Sent: 13 August 2012 12:15
To: Romain Manni-Bucau
Cc: dev@cxf.apache.org
Subject: Re: fediz idp auth

Digest auth on its own provides little to no security. Security comes from
using TLS.

Colm.

On Mon, Aug 13, 2012 at 11:11 AM, Romain Manni-Bucau
<rmannibucau@gmail.com>wrote:

> just think the Basic auth is not enough secure for real life applications.
>
> not sure i got the issue right btw
>
> - Romain
>
>
> 2012/8/13 Colm O hEigeartaigh <coheigea@apache.org>
>
>> Yep, the IDP currently only supports Basic Auth. Do you have a use-case
>> for
>> supporting digest auth? The problem is that the IDP packages the received
>> Username/Password into a WS-Security UsernameToken to send to the STS.
>>
>> Colm.
>>
>> On Fri, Aug 10, 2012 at 5:59 PM, Romain Manni-Bucau
>> <rmannibucau@gmail.com>wrote:
>>
>> > Hi,
>> >
>> > idp only supports basic auth?
>> >
>> > is there any more auth type supported or more (like digest for instance)
>> > will be supported?
>> >
>> > any GUI login/GUI hook will be provided in next releases?
>> >
>> > - Romain
>> >
>>
>>
>>
>> --
>> Colm O hEigeartaigh
>>
>> Talend Community Coder
>> http://coders.talend.com
>>
>
>


--
Colm O hEigeartaigh

Talend Community Coder
http://coders.talend.com

Mime
View raw message