You are viewing a plain text version of this content. The canonical link for it is here.
Posted to issues@camel.apache.org by "Willem Jiang (JIRA)" <ji...@apache.org> on 2013/12/18 13:44:07 UTC
[jira] [Commented] (CAMEL-7078) camel-cxf-transport component
should propagate SecurityContext
[ https://issues.apache.org/jira/browse/CAMEL-7078?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=13851650#comment-13851650 ]
Willem Jiang commented on CAMEL-7078:
-------------------------------------
Hi Sergey,
Thanks for the patch, I'd like the first one which doesn't introduce the dependency of servlet API and new class (CxfServletRequestMapper).
What do you think?
> camel-cxf-transport component should propagate SecurityContext
> --------------------------------------------------------------
>
> Key: CAMEL-7078
> URL: https://issues.apache.org/jira/browse/CAMEL-7078
> Project: Camel
> Issue Type: Improvement
> Components: camel-cxf
> Reporter: Sergey Beryozkin
> Assignee: Willem Jiang
> Fix For: 2.11.4, 2.12.3, 2.13.0
>
> Attachments: camel7078-optionalservletdeps.txt, camel7078-reflection.txt
>
>
> Camel CXF Transport does not propagate a security context available from the current HTTP Servlet Request - which may be wrapped by Spring security, etc.
> Camel users may still work directly with Camel Exchange properties, but CXF endpoints won't be able to avoid losing the transport-independent approach for checking the security contexts.
>
--
This message was sent by Atlassian JIRA
(v6.1.4#6159)