From user-return-12772-apmail-geronimo-user-archive=geronimo.apache.org@geronimo.apache.org Thu Mar 05 10:40:34 2009 Return-Path: Delivered-To: apmail-geronimo-user-archive@www.apache.org Received: (qmail 89187 invoked from network); 5 Mar 2009 10:40:34 -0000 Received: from hermes.apache.org (HELO mail.apache.org) (140.211.11.2) by minotaur.apache.org with SMTP; 5 Mar 2009 10:40:34 -0000 Received: (qmail 13676 invoked by uid 500); 5 Mar 2009 10:40:31 -0000 Delivered-To: apmail-geronimo-user-archive@geronimo.apache.org Received: (qmail 13656 invoked by uid 500); 5 Mar 2009 10:40:31 -0000 Mailing-List: contact user-help@geronimo.apache.org; run by ezmlm Precedence: bulk list-help: list-unsubscribe: List-Post: Reply-To: user@geronimo.apache.org List-Id: Delivered-To: mailing list user@geronimo.apache.org Received: (qmail 13647 invoked by uid 99); 5 Mar 2009 10:40:31 -0000 Received: from athena.apache.org (HELO athena.apache.org) (140.211.11.136) by apache.org (qpsmtpd/0.29) with ESMTP; Thu, 05 Mar 2009 02:40:31 -0800 X-ASF-Spam-Status: No, hits=2.6 required=10.0 tests=DNS_FROM_OPENWHOIS,SPF_HELO_PASS,SPF_PASS,WHOIS_MYPRIVREG X-Spam-Check-By: apache.org Received-SPF: pass (athena.apache.org: domain of lists@nabble.com designates 216.139.236.158 as permitted sender) Received: from [216.139.236.158] (HELO kuber.nabble.com) (216.139.236.158) by apache.org (qpsmtpd/0.29) with ESMTP; Thu, 05 Mar 2009 10:40:23 +0000 Received: from isper.nabble.com ([192.168.236.156]) by kuber.nabble.com with esmtp (Exim 4.63) (envelope-from ) id 1LfAzi-00087d-KI for user@geronimo.apache.org; Thu, 05 Mar 2009 02:40:02 -0800 Message-ID: <22349175.post@talk.nabble.com> Date: Thu, 5 Mar 2009 02:40:02 -0800 (PST) From: Kaupo To: user@geronimo.apache.org Subject: Re: Custom Login Module HttpServletRequest access for webservice In-Reply-To: <09059AF9-0C7F-4507-A462-F478533D9A76@yahoo.com> MIME-Version: 1.0 Content-Type: text/plain; charset=us-ascii Content-Transfer-Encoding: 7bit X-Nabble-From: kparmas@gmail.com References: <22303812.post@talk.nabble.com> <09059AF9-0C7F-4507-A462-F478533D9A76@yahoo.com> X-Virus-Checked: Checked by ClamAV on apache.org djencks wrote: > > > I'm pretty sure that the specs don't support what your login module is > doing, and that it only works due to some accidents of implementation > in geronimo. However, we ought to be able to make it work for ejb > webservices just as well as for servlets. I doubt it will be a big > change. I'm not sure we can get it fixed for 2.1.4.... we'll see. > Could you file a jira enhancement request? > > The "official" way to do this is really to use JASPI and set up a > custom authentication method that replaces the BASIC auth and fishes > the info out of the request and provides it to the login service.... > in this case presumably a login module. However JASPI is only > available in trunk and with the currently rapidly changing jetty 7 > integration and we don't have the tck for it yet. > > thanks > david jencks > I'd love to file a jira enhancement request. But I've never done that before, so when can I do it? JASPI sounds interesting but unfortunately I don't have time to learn it - the project deadline is approaching. Thanks for the fast reply David! -Kaupo -- View this message in context: http://www.nabble.com/Custom-Login-Module-HttpServletRequest-access-for-webservice-tp22303812s134p22349175.html Sent from the Apache Geronimo - Users mailing list archive at Nabble.com.