shiro-dev mailing list archives

Site index · List index
Message view « Date » · « Thread »
Top « Date » · « Thread »
From "Les Hazlewood (JIRA)" <j...@apache.org>
Subject [jira] [Created] (SHIRO-414) Create generic HttpAuthenticationFilter supporting multiple HTTP authentication schemes
Date Thu, 17 Jan 2013 17:50:13 GMT
Les Hazlewood created SHIRO-414:
-----------------------------------

             Summary: Create generic HttpAuthenticationFilter supporting multiple HTTP authentication
schemes
                 Key: SHIRO-414
                 URL: https://issues.apache.org/jira/browse/SHIRO-414
             Project: Shiro
          Issue Type: New Feature
          Components: Authentication (log-in), Web
            Reporter: Les Hazlewood
             Fix For: 1.3.0


The BasicHttpAuthentication filter assumes HTTP's 'Basic' authentication scheme.  But HTTP
Authentication can support multiple schemes - instead of creating a filter per scheme, like
we assume today, it probably makes sense to have a single filter that can support multiple
schemes.

This issue is to create a general HttpAuthenticationFilter that allows one or more pluggable
Schemes.  Each Scheme should be able to resolve an authentication token based on the {{Authorization}}
header value.

Existing authc filters (e.g. BasicHttpAuthenticationFilter) can leverage this new concept
if necessary - they would just be a filter that comes pre-configured with a single scheme.

--
This message is automatically generated by JIRA.
If you think it was sent incorrectly, please contact your JIRA administrators
For more information on JIRA, see: http://www.atlassian.com/software/jira

Mime
View raw message