jackrabbit-dev mailing list archives

Site index · List index
Message view « Date » · « Thread »
Top « Date » · « Thread »
From "Felix Meschberger (JIRA)" <j...@apache.org>
Subject [jira] Updated: (JCR-2355) Support easy pre-authenticated login
Date Wed, 14 Oct 2009 07:20:31 GMT

     [ https://issues.apache.org/jira/browse/JCR-2355?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel
]

Felix Meschberger updated JCR-2355:
-----------------------------------

    Attachment: JCR-2355.patch

Patch extending the AbstractLoginModule with support for pre-authentication.

This patch adds the following:

  * Support for a configuration parameter declaring a SimpleCredentials attribute for pre-authentication
  * Add an isPreAuthenticated(Credentials) method used by the login() method

The isPreAuthenticated method is protected and can be overwritten by AbstractLoginModule implementations
to either switch pre authentication off completely or to apply different and more elaborate
checks on the credentials.

> Support easy pre-authenticated login
> ------------------------------------
>
>                 Key: JCR-2355
>                 URL: https://issues.apache.org/jira/browse/JCR-2355
>             Project: Jackrabbit Content Repository
>          Issue Type: Improvement
>          Components: jackrabbit-core
>    Affects Versions: 2.0-alpha11
>            Reporter: Felix Meschberger
>             Fix For: 2.0-alpha12
>
>         Attachments: JCR-2355.patch
>
>
> Some applications authenticate users themselves and just need to access the repository
on behalf of these pre-authenticated users.
> Examples of such pre-authentications include SSO solutions or web applications using
a web-based authentication protocol not easily implementable in a JAAS LoginModule, for example
OpenID or similar.
> In such situations a password may not be provided in SimpleCredentials and thus regular
login with user name and password is not possible.
> Therefore I propose the enhancement of the AbstractLoginModule to allow for setting a
specific attribute in the SimpleCredentials attribute map. If this attribute is set, authentication
and login succeeds and a session for the user named in the SimpleCredentials is created.
> As a starter we might just check for the presence of the attribute.

-- 
This message is automatically generated by JIRA.
-
You can reply to this email to add a comment to the issue online.


Mime
View raw message