cxf-users mailing list archives

Site index · List index
Message view « Date » · « Thread »
Top « Date » · « Thread »
From "Slava Imeshev" <imes...@yahoo.com>
Subject RE: Authentication and authorization
Date Fri, 20 Feb 2009 18:21:42 GMT
Daniel,

I am pretty new to CXF. I'd very grateful if you could you point  me
in the right direction. Any examples/tutorials?

Regards,

Slava Imeshev


> -----Original Message-----
> From: Daniel Kulp [mailto:dkulp@apache.org] 
> Sent: Friday, February 20, 2009 7:58 AM
> To: users@cxf.apache.org
> Cc: Slava Imeshev
> Subject: Re: Authentication and authorization
> 
> 
> The JAX-WS spec kind of covers this.   
> 
> If you inject WebServiceContext, from the context, you can 
> get the user 
> principal and call the isUserInRole call which would call 
> back into the tomcat 
> auth modules.   From that, you can act on it any way you please.
> 
> Dan
> 
> 
> On Thu February 19 2009 5:58:12 pm Slava Imeshev wrote:
> > Hi all,
> >
> > I have an interesting use case that I am not sure how to approach.
> >
> > Consider a service MyService on Tomcat, pseudocode:
> >
> > MyService {
> >    Set<Entry> getEntries();
> > }
> >
> > For that service, if the requester did not authenticate, the
> > getEntries would return a limited list of entries, only 
> those allowed
> > for "public" access. If the requestor did authenticate, the
service
> > returns an extended set. How can this be done with CXF?
> >
> > Regards,
> >
> > Slava Imeshev
> 
> -- 
> Daniel Kulp
> dkulp@apache.org
> http://www.dankulp.com/blog



Mime
View raw message