You are viewing a plain text version of this content. The canonical link for it is here.
Posted to dev@sling.apache.org by "Felix Meschberger (Created) (JIRA)" <ji...@apache.org> on 2011/11/10 09:14:51 UTC
[jira] [Created] (SLING-2276) Support configurable anonymous user
credentials
Support configurable anonymous user credentials
-----------------------------------------------
Key: SLING-2276
URL: https://issues.apache.org/jira/browse/SLING-2276
Project: Sling
Issue Type: New Feature
Components: Authentication
Affects Versions: Auth Core 1.0.6
Reporter: Felix Meschberger
Currently anonymous access caused by missing credentials in the request is granted using the underlying repository's notion of anonymous user. This is achieved by calling ResourceResolverFactory.getResourceResolver with a null argument.
Sometimes, though, it may be the case, that the underlying ResourceProvider(s) do not grant access for null credentials. One such case might be a jackrabbit repository whose anonymous user has been disabled and Repository.login with null credentials would fail.
As discussed on the dev [1] and users [2] list, it might be helpful to be able to configure user name and password for assumed anonymous access.
[1] http://markmail.org/message/ovxno55hnfl74ufe
[2] http://markmail.org/message/i6sk2a6nyeehzde5
--
This message is automatically generated by JIRA.
If you think it was sent incorrectly, please contact your JIRA administrators: https://issues.apache.org/jira/secure/ContactAdministrators!default.jspa
For more information on JIRA, see: http://www.atlassian.com/software/jira
[jira] [Resolved] (SLING-2276) Support configurable anonymous user
credentials
Posted by "Felix Meschberger (Resolved) (JIRA)" <ji...@apache.org>.
[ https://issues.apache.org/jira/browse/SLING-2276?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel ]
Felix Meschberger resolved SLING-2276.
--------------------------------------
Resolution: Fixed
Fix Version/s: Auth Core 1.0.8
Applied the patch in Rev. 1203901.
In addition improved the WebConsole plugin to print some more configuration information: Impersonation Cookie and Parameter and the user name configured for requests without credentials (the password is not available in the Web Console)
> Support configurable anonymous user credentials
> -----------------------------------------------
>
> Key: SLING-2276
> URL: https://issues.apache.org/jira/browse/SLING-2276
> Project: Sling
> Issue Type: New Feature
> Components: Authentication
> Affects Versions: Auth Core 1.0.6
> Reporter: Felix Meschberger
> Assignee: Felix Meschberger
> Fix For: Auth Core 1.0.8
>
> Attachments: SLING-2276.patch
>
>
> Currently anonymous access caused by missing credentials in the request is granted using the underlying repository's notion of anonymous user. This is achieved by calling ResourceResolverFactory.getResourceResolver with a null argument.
> Sometimes, though, it may be the case, that the underlying ResourceProvider(s) do not grant access for null credentials. One such case might be a jackrabbit repository whose anonymous user has been disabled and Repository.login with null credentials would fail.
> As discussed on the dev [1] and users [2] list, it might be helpful to be able to configure user name and password for assumed anonymous access.
> [1] http://markmail.org/message/ovxno55hnfl74ufe
> [2] http://markmail.org/message/i6sk2a6nyeehzde5
--
This message is automatically generated by JIRA.
If you think it was sent incorrectly, please contact your JIRA administrators: https://issues.apache.org/jira/secure/ContactAdministrators!default.jspa
For more information on JIRA, see: http://www.atlassian.com/software/jira
[jira] [Assigned] (SLING-2276) Support configurable anonymous user
credentials
Posted by "Felix Meschberger (Assigned) (JIRA)" <ji...@apache.org>.
[ https://issues.apache.org/jira/browse/SLING-2276?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel ]
Felix Meschberger reassigned SLING-2276:
----------------------------------------
Assignee: Felix Meschberger
> Support configurable anonymous user credentials
> -----------------------------------------------
>
> Key: SLING-2276
> URL: https://issues.apache.org/jira/browse/SLING-2276
> Project: Sling
> Issue Type: New Feature
> Components: Authentication
> Affects Versions: Auth Core 1.0.6
> Reporter: Felix Meschberger
> Assignee: Felix Meschberger
> Attachments: SLING-2276.patch
>
>
> Currently anonymous access caused by missing credentials in the request is granted using the underlying repository's notion of anonymous user. This is achieved by calling ResourceResolverFactory.getResourceResolver with a null argument.
> Sometimes, though, it may be the case, that the underlying ResourceProvider(s) do not grant access for null credentials. One such case might be a jackrabbit repository whose anonymous user has been disabled and Repository.login with null credentials would fail.
> As discussed on the dev [1] and users [2] list, it might be helpful to be able to configure user name and password for assumed anonymous access.
> [1] http://markmail.org/message/ovxno55hnfl74ufe
> [2] http://markmail.org/message/i6sk2a6nyeehzde5
--
This message is automatically generated by JIRA.
If you think it was sent incorrectly, please contact your JIRA administrators: https://issues.apache.org/jira/secure/ContactAdministrators!default.jspa
For more information on JIRA, see: http://www.atlassian.com/software/jira
[jira] [Updated] (SLING-2276) Support configurable anonymous user
credentials
Posted by "Felix Meschberger (Updated) (JIRA)" <ji...@apache.org>.
[ https://issues.apache.org/jira/browse/SLING-2276?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel ]
Felix Meschberger updated SLING-2276:
-------------------------------------
Attachment: SLING-2276.patch
Proposed (untested) patch.
> Support configurable anonymous user credentials
> -----------------------------------------------
>
> Key: SLING-2276
> URL: https://issues.apache.org/jira/browse/SLING-2276
> Project: Sling
> Issue Type: New Feature
> Components: Authentication
> Affects Versions: Auth Core 1.0.6
> Reporter: Felix Meschberger
> Attachments: SLING-2276.patch
>
>
> Currently anonymous access caused by missing credentials in the request is granted using the underlying repository's notion of anonymous user. This is achieved by calling ResourceResolverFactory.getResourceResolver with a null argument.
> Sometimes, though, it may be the case, that the underlying ResourceProvider(s) do not grant access for null credentials. One such case might be a jackrabbit repository whose anonymous user has been disabled and Repository.login with null credentials would fail.
> As discussed on the dev [1] and users [2] list, it might be helpful to be able to configure user name and password for assumed anonymous access.
> [1] http://markmail.org/message/ovxno55hnfl74ufe
> [2] http://markmail.org/message/i6sk2a6nyeehzde5
--
This message is automatically generated by JIRA.
If you think it was sent incorrectly, please contact your JIRA administrators: https://issues.apache.org/jira/secure/ContactAdministrators!default.jspa
For more information on JIRA, see: http://www.atlassian.com/software/jira