shiro-user mailing list archives

Site index · List index
Message view « Date » · « Thread »
Top « Date » · « Thread »
From Dominic Farr <dominicf...@gmail.com>
Subject Re: AJAX
Date Tue, 02 Sep 2014 07:21:48 GMT
Sorry, correction, Auth0 wrote the AngularJS blog. Auth0 has nothing to do
with OAuth, the open standard for authorization.
I clearly need a coffee!


On 2 September 2014 08:17, Dominic Farr <dominicfarr@gmail.com> wrote:

> Not sure that makes sense. Basic authentication uses HTTP Headers, not
> cookies. See Here
> <http://en.wikipedia.org/wiki/Basic_access_authentication>
>
> Yes, Shiro can handle security for ajax stacks like AngularJS, but it all
> depends on your security requirements; Basic, Session based cookies,
> or Token based authentication (sometimes called Bearer Token.)
>
> OAuth did a nice break down for AngularJS and security, you can read that
> here
> <https://auth0.com/blog/2014/01/07/angularjs-authentication-with-cookies-vs-token/>
>
> Best of luck.
>
> Dom
> On 2 Sep 2014 03:26, "Brian Demers" <brian.demers@gmail.com> wrote:
>
>> You could use BASIC auth (and check for a cookie)
>>
>> -Brian
>>
>> On Sep 1, 2014, at 11:03 AM, Anant Rao <rao_anant@yahoo.com> wrote:
>>
>> Hi,
>>
>> I am a backend developer. Using Shiro, I implemented a form-based
>> authenticator with SHA256 salted password hasher. All of this works great.
>> Now, the front-end developer says he is using angularJS and he's unable
>> to mix form-based auth with the rest of his stuff and asked me to figure
>> out if I can support AJAX based thing for Auth also.
>>
>> I'm not familiar with the front-end technologies. Could you help me
>> understand if Shiro supports such AJAX-based authentication.
>> Thanks!
>> Anant
>>
>>
>>

Mime
View raw message