You are viewing a plain text version of this content. The canonical link for it is here.
Posted to users@wicket.apache.org by Murat Yücel <ko...@gmail.com> on 2008/02/14 16:55:41 UTC
wicketstuff-rome and authentification.
Hi All
I have started using the wicketstuff-rome project to generate rss feed.
Before this was just done
in a servlet. The servlet would check the parameters submitted. If they were
valid then the rss feed
would get generated.
The parameters are username, password.
Is it possible to add authentification in wicket to the feed? If it is how
would you do it?
I have created my feed using this example: wicketstuff-rome-examples
/Murat
Re: wicketstuff-rome and authentification.
Posted by Murat Yücel <ko...@gmail.com>.
My feed was a shared resource just like the wicketstuff-rome example.
I have changed it to be a page, so now i can add wicket authentification.
http://www.jroller.com/wireframe/entry/wicket_feedpage
/Murat
2008/2/15, Maurice Marrink <ma...@gmail.com>:
>
> Why not use a filter?
> Wicket uses them too.
> I have absolutely no clue how wicketstuff-rome or rss for that matter
> works but it looks like they are using a regular wicket page.
> So the question is what do you want?
> i can think of the following solutions, but there are probably some
> more i haven't thought of
> -do the authentication on the fly in your page (you do not need any
> fancy security framework for this)
> -put a filter in front of your app that does the validation for the
> rss feed for you (you do not need any fancy security framework for
> this)
> -you can secure the page in the recommended way of your security
> framework (wicket-auth roles or swarm)
>
> whichever you prefer depends on a couple of things
> -are you already using a wicket security-framework? or something like
> acegi?
> -is it enough for you to authenticate the user or does he need extra
> permissions to access the feed?
> -do you prefer keeping everything in wicket or are you ok with
> servletfilters and stuff?
>
> So you see there is no right or wrong direction, all roads lead to
> rome (pun intended)
>
> Let me know what you prefer and we go from there.
>
> Maurice
>
>
>
> On Fri, Feb 15, 2008 at 11:22 AM, Murat Yücel <ko...@gmail.com>
> wrote:
> > Hi Maurice
> >
> > Can you point me in the right direction? What I need is the following.
> >
> > http://localhost:8080/rssfeed?username=admin&password=12345678
> >
> > The username and password should be validated against the database
> > and if it is correct the feed should be generated. I can of course do
> this
> > with a filter but i guess this is not the wicket way....
> >
> > /Murat
> >
> > 2008/2/14, Maurice Marrink <ma...@gmail.com>:
> >
> >
> > >
> > > For swarm 1.3.1 i am working on this. It allows you to use the same
> > > authorization / authentication mechanism as your wicket app. in
> effect
> > > the policy files.
> > > You can try it out by letting your pom get the latest 1.3-SNAPSHOT.
> > > Some feedback is welcome.
> > >
> > >
> > > Maurice
> > >
> > >
> > > On Thu, Feb 14, 2008 at 5:03 PM, Ryan Sonnek <ry...@gmail.com>
> > > wrote:
> > > > you can mount the wicket rss feed as a "bookmarkable url" and use a
> > > > filter to ensure security.
> > > >
> > > > Not sure if wicket has the concept of "securing application
> resources"
> > > > currently built in?
> > > >
> > > >
> > > >
> > > > On Thu, Feb 14, 2008 at 9:55 AM, Murat Yücel <
> kodeperkeren@gmail.com>
> > > wrote:
> > > > > Hi All
> > > > >
> > > > > I have started using the wicketstuff-rome project to generate
> rss
> > > feed.
> > > > > Before this was just done
> > > > > in a servlet. The servlet would check the parameters submitted.
> If
> > > they were
> > > > > valid then the rss feed
> > > > > would get generated.
> > > > > The parameters are username, password.
> > > > >
> > > > > Is it possible to add authentification in wicket to the feed?
> If it
> > > is how
> > > > > would you do it?
> > > > > I have created my feed using this example:
> wicketstuff-rome-examples
> > > > >
> > > > > /Murat
> > > > >
> > > >
> > >
> > ---------------------------------------------------------------------
> > > > To unsubscribe, e-mail: users-unsubscribe@wicket.apache.org
> > > > For additional commands, e-mail: users-help@wicket.apache.org
> > > >
> > > >
> > >
> > > ---------------------------------------------------------------------
> > > To unsubscribe, e-mail: users-unsubscribe@wicket.apache.org
> > > For additional commands, e-mail: users-help@wicket.apache.org
> > >
> > >
> >
>
> ---------------------------------------------------------------------
> To unsubscribe, e-mail: users-unsubscribe@wicket.apache.org
> For additional commands, e-mail: users-help@wicket.apache.org
>
>
Re: wicketstuff-rome and authentification.
Posted by Maurice Marrink <ma...@gmail.com>.
Why not use a filter?
Wicket uses them too.
I have absolutely no clue how wicketstuff-rome or rss for that matter
works but it looks like they are using a regular wicket page.
So the question is what do you want?
i can think of the following solutions, but there are probably some
more i haven't thought of
-do the authentication on the fly in your page (you do not need any
fancy security framework for this)
-put a filter in front of your app that does the validation for the
rss feed for you (you do not need any fancy security framework for
this)
-you can secure the page in the recommended way of your security
framework (wicket-auth roles or swarm)
whichever you prefer depends on a couple of things
-are you already using a wicket security-framework? or something like acegi?
-is it enough for you to authenticate the user or does he need extra
permissions to access the feed?
-do you prefer keeping everything in wicket or are you ok with
servletfilters and stuff?
So you see there is no right or wrong direction, all roads lead to
rome (pun intended)
Let me know what you prefer and we go from there.
Maurice
On Fri, Feb 15, 2008 at 11:22 AM, Murat Yücel <ko...@gmail.com> wrote:
> Hi Maurice
>
> Can you point me in the right direction? What I need is the following.
>
> http://localhost:8080/rssfeed?username=admin&password=12345678
>
> The username and password should be validated against the database
> and if it is correct the feed should be generated. I can of course do this
> with a filter but i guess this is not the wicket way....
>
> /Murat
>
> 2008/2/14, Maurice Marrink <ma...@gmail.com>:
>
>
> >
> > For swarm 1.3.1 i am working on this. It allows you to use the same
> > authorization / authentication mechanism as your wicket app. in effect
> > the policy files.
> > You can try it out by letting your pom get the latest 1.3-SNAPSHOT.
> > Some feedback is welcome.
> >
> >
> > Maurice
> >
> >
> > On Thu, Feb 14, 2008 at 5:03 PM, Ryan Sonnek <ry...@gmail.com>
> > wrote:
> > > you can mount the wicket rss feed as a "bookmarkable url" and use a
> > > filter to ensure security.
> > >
> > > Not sure if wicket has the concept of "securing application resources"
> > > currently built in?
> > >
> > >
> > >
> > > On Thu, Feb 14, 2008 at 9:55 AM, Murat Yücel <ko...@gmail.com>
> > wrote:
> > > > Hi All
> > > >
> > > > I have started using the wicketstuff-rome project to generate rss
> > feed.
> > > > Before this was just done
> > > > in a servlet. The servlet would check the parameters submitted. If
> > they were
> > > > valid then the rss feed
> > > > would get generated.
> > > > The parameters are username, password.
> > > >
> > > > Is it possible to add authentification in wicket to the feed? If it
> > is how
> > > > would you do it?
> > > > I have created my feed using this example: wicketstuff-rome-examples
> > > >
> > > > /Murat
> > > >
> > >
> > > ---------------------------------------------------------------------
> > > To unsubscribe, e-mail: users-unsubscribe@wicket.apache.org
> > > For additional commands, e-mail: users-help@wicket.apache.org
> > >
> > >
> >
> > ---------------------------------------------------------------------
> > To unsubscribe, e-mail: users-unsubscribe@wicket.apache.org
> > For additional commands, e-mail: users-help@wicket.apache.org
> >
> >
>
---------------------------------------------------------------------
To unsubscribe, e-mail: users-unsubscribe@wicket.apache.org
For additional commands, e-mail: users-help@wicket.apache.org
Re: wicketstuff-rome and authentification.
Posted by Murat Yücel <ko...@gmail.com>.
Hi Maurice
Can you point me in the right direction? What I need is the following.
http://localhost:8080/rssfeed?username=admin&password=12345678
The username and password should be validated against the database
and if it is correct the feed should be generated. I can of course do this
with a filter but i guess this is not the wicket way....
/Murat
2008/2/14, Maurice Marrink <ma...@gmail.com>:
>
> For swarm 1.3.1 i am working on this. It allows you to use the same
> authorization / authentication mechanism as your wicket app. in effect
> the policy files.
> You can try it out by letting your pom get the latest 1.3-SNAPSHOT.
> Some feedback is welcome.
>
>
> Maurice
>
>
> On Thu, Feb 14, 2008 at 5:03 PM, Ryan Sonnek <ry...@gmail.com>
> wrote:
> > you can mount the wicket rss feed as a "bookmarkable url" and use a
> > filter to ensure security.
> >
> > Not sure if wicket has the concept of "securing application resources"
> > currently built in?
> >
> >
> >
> > On Thu, Feb 14, 2008 at 9:55 AM, Murat Yücel <ko...@gmail.com>
> wrote:
> > > Hi All
> > >
> > > I have started using the wicketstuff-rome project to generate rss
> feed.
> > > Before this was just done
> > > in a servlet. The servlet would check the parameters submitted. If
> they were
> > > valid then the rss feed
> > > would get generated.
> > > The parameters are username, password.
> > >
> > > Is it possible to add authentification in wicket to the feed? If it
> is how
> > > would you do it?
> > > I have created my feed using this example: wicketstuff-rome-examples
> > >
> > > /Murat
> > >
> >
> > ---------------------------------------------------------------------
> > To unsubscribe, e-mail: users-unsubscribe@wicket.apache.org
> > For additional commands, e-mail: users-help@wicket.apache.org
> >
> >
>
> ---------------------------------------------------------------------
> To unsubscribe, e-mail: users-unsubscribe@wicket.apache.org
> For additional commands, e-mail: users-help@wicket.apache.org
>
>
Re: wicketstuff-rome and authentification.
Posted by Maurice Marrink <ma...@gmail.com>.
For swarm 1.3.1 i am working on this. It allows you to use the same
authorization / authentication mechanism as your wicket app. in effect
the policy files.
You can try it out by letting your pom get the latest 1.3-SNAPSHOT.
Some feedback is welcome.
Maurice
On Thu, Feb 14, 2008 at 5:03 PM, Ryan Sonnek <ry...@gmail.com> wrote:
> you can mount the wicket rss feed as a "bookmarkable url" and use a
> filter to ensure security.
>
> Not sure if wicket has the concept of "securing application resources"
> currently built in?
>
>
>
> On Thu, Feb 14, 2008 at 9:55 AM, Murat Yücel <ko...@gmail.com> wrote:
> > Hi All
> >
> > I have started using the wicketstuff-rome project to generate rss feed.
> > Before this was just done
> > in a servlet. The servlet would check the parameters submitted. If they were
> > valid then the rss feed
> > would get generated.
> > The parameters are username, password.
> >
> > Is it possible to add authentification in wicket to the feed? If it is how
> > would you do it?
> > I have created my feed using this example: wicketstuff-rome-examples
> >
> > /Murat
> >
>
> ---------------------------------------------------------------------
> To unsubscribe, e-mail: users-unsubscribe@wicket.apache.org
> For additional commands, e-mail: users-help@wicket.apache.org
>
>
---------------------------------------------------------------------
To unsubscribe, e-mail: users-unsubscribe@wicket.apache.org
For additional commands, e-mail: users-help@wicket.apache.org
Re: wicketstuff-rome and authentification.
Posted by Nino Saturnino Martinez Vazquez Wael <ni...@jayway.dk>.
It would be really cool to have such a feature.. Im, thinking on
wicket-auth here..
Ryan Sonnek wrote:
> you can mount the wicket rss feed as a "bookmarkable url" and use a
> filter to ensure security.
>
> Not sure if wicket has the concept of "securing application resources"
> currently built in?
>
> On Thu, Feb 14, 2008 at 9:55 AM, Murat Yücel <ko...@gmail.com> wrote:
>
>> Hi All
>>
>> I have started using the wicketstuff-rome project to generate rss feed.
>> Before this was just done
>> in a servlet. The servlet would check the parameters submitted. If they were
>> valid then the rss feed
>> would get generated.
>> The parameters are username, password.
>>
>> Is it possible to add authentification in wicket to the feed? If it is how
>> would you do it?
>> I have created my feed using this example: wicketstuff-rome-examples
>>
>> /Murat
>>
>>
>
> ---------------------------------------------------------------------
> To unsubscribe, e-mail: users-unsubscribe@wicket.apache.org
> For additional commands, e-mail: users-help@wicket.apache.org
>
>
>
--
Nino Martinez Wael
Java Specialist @ Jayway DK
http://www.jayway.dk
+45 2936 7684
---------------------------------------------------------------------
To unsubscribe, e-mail: users-unsubscribe@wicket.apache.org
For additional commands, e-mail: users-help@wicket.apache.org
Re: wicketstuff-rome and authentification.
Posted by Ryan Sonnek <ry...@gmail.com>.
you can mount the wicket rss feed as a "bookmarkable url" and use a
filter to ensure security.
Not sure if wicket has the concept of "securing application resources"
currently built in?
On Thu, Feb 14, 2008 at 9:55 AM, Murat Yücel <ko...@gmail.com> wrote:
> Hi All
>
> I have started using the wicketstuff-rome project to generate rss feed.
> Before this was just done
> in a servlet. The servlet would check the parameters submitted. If they were
> valid then the rss feed
> would get generated.
> The parameters are username, password.
>
> Is it possible to add authentification in wicket to the feed? If it is how
> would you do it?
> I have created my feed using this example: wicketstuff-rome-examples
>
> /Murat
>
---------------------------------------------------------------------
To unsubscribe, e-mail: users-unsubscribe@wicket.apache.org
For additional commands, e-mail: users-help@wicket.apache.org