You are viewing a plain text version of this content. The canonical link for it is here.
Posted to issues@cxf.apache.org by "Sergey Beryozkin (Created) (JIRA)" <ji...@apache.org> on 2012/01/19 18:15:40 UTC
[jira] [Created] (CXF-4047) OAuthContext should provide an access
to OAuthPermissions
OAuthContext should provide an access to OAuthPermissions
---------------------------------------------------------
Key: CXF-4047
URL: https://issues.apache.org/jira/browse/CXF-4047
Project: CXF
Issue Type: Improvement
Components: JAX-RS
Affects Versions: 2.5.2
Reporter: Sergey Beryozkin
Assignee: Sergey Beryozkin
OAuthContext offers an access to UserSubject for OAuth services to figure out which user's resources are actually accessed.
It should also offer an access to OAuthPermission for the custom interpretation of those permissions to be possible. For example, the service code can try to validate that a client can indeed modify a calendar but only a given hour slot
--
This message is automatically generated by JIRA.
If you think it was sent incorrectly, please contact your JIRA administrators: https://issues.apache.org/jira/secure/ContactAdministrators!default.jspa
For more information on JIRA, see: http://www.atlassian.com/software/jira
[jira] [Resolved] (CXF-4047) OAuthContext should provide an access
to OAuthPermissions
Posted by "Sergey Beryozkin (Resolved) (JIRA)" <ji...@apache.org>.
[ https://issues.apache.org/jira/browse/CXF-4047?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel ]
Sergey Beryozkin resolved CXF-4047.
-----------------------------------
Resolution: Fixed
Fix Version/s: 2.6
2.5.2
> OAuthContext should provide an access to OAuthPermissions
> ---------------------------------------------------------
>
> Key: CXF-4047
> URL: https://issues.apache.org/jira/browse/CXF-4047
> Project: CXF
> Issue Type: Improvement
> Components: JAX-RS
> Affects Versions: 2.5.2
> Reporter: Sergey Beryozkin
> Assignee: Sergey Beryozkin
> Labels: jaxrs, oauth
> Fix For: 2.5.2, 2.6
>
>
> OAuthContext offers an access to UserSubject for OAuth services to figure out which user's resources are actually accessed.
> It should also offer an access to OAuthPermission for the custom interpretation of those permissions to be possible. For example, the service code can try to validate that a client can indeed modify a calendar but only a given hour slot
--
This message is automatically generated by JIRA.
If you think it was sent incorrectly, please contact your JIRA administrators: https://issues.apache.org/jira/secure/ContactAdministrators!default.jspa
For more information on JIRA, see: http://www.atlassian.com/software/jira