Consume a ASP.Net Service with windows Authentification from JSF

[Georg Füchsle <gi...@googlemail.com>]

I have to make calls to an customers ASP.NET RESTful Service. This service
is protecetd by a windows authentification.

As far as I assume, this means, the user will use a browser on a windows
computer inside their company. They open my web-app that is hosted outside
their company. From this web-Apap I call again the REST-Service inside this
company. To have permission to the service I have to send the user
authentification data.

My question: What do I (in the JSF-web-app outside the company) have to do
to deliver the user-information towards the REST-service?

Has anybody done something like this?


Thanks in advance,

Gio

Re: Consume a ASP.Net Service with windows Authentification from JSF

[Mike Kienenberger <mk...@gmail.com>]

It's hard to guess what exactly you need, but you might be able to do
it with something like jcifs, although it has seemed somewhat flakey
in our environment.

http://jcifs.samba.org/
http://jcifs.samba.org/src/docs/ntlmhttpauth.html

This lists some other alternatives.
http://stackoverflow.com/questions/576850/alternatives-for-jcifs-ntlm-library

On Wed, Jul 24, 2013 at 5:46 AM, Georg Füchsle <gi...@googlemail.com> wrote:
> I have to make calls to an customers ASP.NET RESTful Service. This service
> is protecetd by a windows authentification.
>
> As far as I assume, this means, the user will use a browser on a windows
> computer inside their company. They open my web-app that is hosted outside
> their company. From this web-Apap I call again the REST-Service inside this
> company. To have permission to the service I have to send the user
> authentification data.
>
> My question: What do I (in the JSF-web-app outside the company) have to do
> to deliver the user-information towards the REST-service?
>
> Has anybody done something like this?
>
>
> Thanks in advance,
>
> Gio

Re: Consume a ASP.Net Service with windows Authentification from JSF

[Georg Füchsle <gi...@googlemail.com>]

I cancelled this!

Still I am not shure about how this has to be done. But I assumed, that I
have to send autentication requests to the domain server of the partner
company. When I asked for this information (ip and port of the domain
server)  the partner company stopped their plans and now will offer access
top the REST-Service with other autentication proofs.
So I will not struggle anymore on this topic.
Thank You for your help!

Gio


2013/7/25 Georg Füchsle <gi...@googlemail.com>

> Thanks! Im am still working for it.If I have a solution i will paste it
> here.
>
>
> 2013/7/25 Mike Kienenberger <mk...@gmail.com>
>
>> I really don't know the details of how it works, but the jcifs servlet
>> filter is sufficient to allow NTLM domain-authenticated connections from
>> both IE and Firefox to a JSF application most of the time, providing
>> all of your web.xml settings are correct.   I'm not exactly certain
>> how that would play out for connecting to an ASP.NET RESTful service
>> instead.
>>
>> If nothing else, the source code should give you some idea of what's
>> going on in a transaction.
>>
>> On Thu, Jul 25, 2013 at 3:06 AM, Georg Füchsle <gi...@googlemail.com>
>> wrote:
>> > Thank you both,
>> > I will try the jcifs first.
>> >
>> > The autentication method ist NTLM. I assume the Autentification header
>> is
>> > part of the http-Headers. Is this header only sent from a specially
>> > configured browser. Because I try with my own machine and own Browser
>> >
>> > Thanks
>> > Gio.
>> >
>> >
>> > 2013/7/24 Jim May <ji...@gmail.com>
>> >
>> >> You would need to find a way to set the authentication header. I dont
>> know
>> >> how easily that is with windows authentication. Maybe painful. You may
>> have
>> >> to switch the authentication method OR setup something like oauth that
>> uses
>> >> tokens so that the two apps trust each other.
>> >> On Jul 24, 2013 5:46 AM, "Georg Füchsle" <gi...@googlemail.com>
>> wrote:
>> >>
>> >> > I have to make calls to an customers ASP.NET RESTful Service. This
>> >> service
>> >> > is protecetd by a windows authentification.
>> >> >
>> >> > As far as I assume, this means, the user will use a browser on a
>> windows
>> >> > computer inside their company. They open my web-app that is hosted
>> >> outside
>> >> > their company. From this web-Apap I call again the REST-Service
>> inside
>> >> this
>> >> > company. To have permission to the service I have to send the user
>> >> > authentification data.
>> >> >
>> >> > My question: What do I (in the JSF-web-app outside the company) have
>> to
>> >> do
>> >> > to deliver the user-information towards the REST-service?
>> >> >
>> >> > Has anybody done something like this?
>> >> >
>> >> >
>> >> > Thanks in advance,
>> >> >
>> >> > Gio
>> >> >
>> >>
>>
>
>

Re: Consume a ASP.Net Service with windows Authentification from JSF

[Georg Füchsle <gi...@googlemail.com>]

Thanks! Im am still working for it.If I have a solution i will paste it
here.


2013/7/25 Mike Kienenberger <mk...@gmail.com>

> I really don't know the details of how it works, but the jcifs servlet
> filter is sufficient to allow NTLM domain-authenticated connections from
> both IE and Firefox to a JSF application most of the time, providing
> all of your web.xml settings are correct.   I'm not exactly certain
> how that would play out for connecting to an ASP.NET RESTful service
> instead.
>
> If nothing else, the source code should give you some idea of what's
> going on in a transaction.
>
> On Thu, Jul 25, 2013 at 3:06 AM, Georg Füchsle <gi...@googlemail.com>
> wrote:
> > Thank you both,
> > I will try the jcifs first.
> >
> > The autentication method ist NTLM. I assume the Autentification header is
> > part of the http-Headers. Is this header only sent from a specially
> > configured browser. Because I try with my own machine and own Browser
> >
> > Thanks
> > Gio.
> >
> >
> > 2013/7/24 Jim May <ji...@gmail.com>
> >
> >> You would need to find a way to set the authentication header. I dont
> know
> >> how easily that is with windows authentication. Maybe painful. You may
> have
> >> to switch the authentication method OR setup something like oauth that
> uses
> >> tokens so that the two apps trust each other.
> >> On Jul 24, 2013 5:46 AM, "Georg Füchsle" <gi...@googlemail.com>
> wrote:
> >>
> >> > I have to make calls to an customers ASP.NET RESTful Service. This
> >> service
> >> > is protecetd by a windows authentification.
> >> >
> >> > As far as I assume, this means, the user will use a browser on a
> windows
> >> > computer inside their company. They open my web-app that is hosted
> >> outside
> >> > their company. From this web-Apap I call again the REST-Service inside
> >> this
> >> > company. To have permission to the service I have to send the user
> >> > authentification data.
> >> >
> >> > My question: What do I (in the JSF-web-app outside the company) have
> to
> >> do
> >> > to deliver the user-information towards the REST-service?
> >> >
> >> > Has anybody done something like this?
> >> >
> >> >
> >> > Thanks in advance,
> >> >
> >> > Gio
> >> >
> >>
>

Re: Consume a ASP.Net Service with windows Authentification from JSF

[Mike Kienenberger <mk...@gmail.com>]

I really don't know the details of how it works, but the jcifs servlet
filter is sufficient to allow NTLM domain-authenticated connections from
both IE and Firefox to a JSF application most of the time, providing
all of your web.xml settings are correct.   I'm not exactly certain
how that would play out for connecting to an ASP.NET RESTful service
instead.

If nothing else, the source code should give you some idea of what's
going on in a transaction.

On Thu, Jul 25, 2013 at 3:06 AM, Georg Füchsle <gi...@googlemail.com> wrote:
> Thank you both,
> I will try the jcifs first.
>
> The autentication method ist NTLM. I assume the Autentification header is
> part of the http-Headers. Is this header only sent from a specially
> configured browser. Because I try with my own machine and own Browser
>
> Thanks
> Gio.
>
>
> 2013/7/24 Jim May <ji...@gmail.com>
>
>> You would need to find a way to set the authentication header. I dont know
>> how easily that is with windows authentication. Maybe painful. You may have
>> to switch the authentication method OR setup something like oauth that uses
>> tokens so that the two apps trust each other.
>> On Jul 24, 2013 5:46 AM, "Georg Füchsle" <gi...@googlemail.com> wrote:
>>
>> > I have to make calls to an customers ASP.NET RESTful Service. This
>> service
>> > is protecetd by a windows authentification.
>> >
>> > As far as I assume, this means, the user will use a browser on a windows
>> > computer inside their company. They open my web-app that is hosted
>> outside
>> > their company. From this web-Apap I call again the REST-Service inside
>> this
>> > company. To have permission to the service I have to send the user
>> > authentification data.
>> >
>> > My question: What do I (in the JSF-web-app outside the company) have to
>> do
>> > to deliver the user-information towards the REST-service?
>> >
>> > Has anybody done something like this?
>> >
>> >
>> > Thanks in advance,
>> >
>> > Gio
>> >
>>

Re: Consume a ASP.Net Service with windows Authentification from JSF

[Georg Füchsle <gi...@googlemail.com>]

Thank you both,
I will try the jcifs first.

The autentication method ist NTLM. I assume the Autentification header is
part of the http-Headers. Is this header only sent from a specially
configured browser. Because I try with my own machine and own Browser

Thanks
Gio.


2013/7/24 Jim May <ji...@gmail.com>

> You would need to find a way to set the authentication header. I dont know
> how easily that is with windows authentication. Maybe painful. You may have
> to switch the authentication method OR setup something like oauth that uses
> tokens so that the two apps trust each other.
> On Jul 24, 2013 5:46 AM, "Georg Füchsle" <gi...@googlemail.com> wrote:
>
> > I have to make calls to an customers ASP.NET RESTful Service. This
> service
> > is protecetd by a windows authentification.
> >
> > As far as I assume, this means, the user will use a browser on a windows
> > computer inside their company. They open my web-app that is hosted
> outside
> > their company. From this web-Apap I call again the REST-Service inside
> this
> > company. To have permission to the service I have to send the user
> > authentification data.
> >
> > My question: What do I (in the JSF-web-app outside the company) have to
> do
> > to deliver the user-information towards the REST-service?
> >
> > Has anybody done something like this?
> >
> >
> > Thanks in advance,
> >
> > Gio
> >
>

Re: Consume a ASP.Net Service with windows Authentification from JSF

[Jim May <ji...@gmail.com>]

You would need to find a way to set the authentication header. I dont know
how easily that is with windows authentication. Maybe painful. You may have
to switch the authentication method OR setup something like oauth that uses
tokens so that the two apps trust each other.
On Jul 24, 2013 5:46 AM, "Georg Füchsle" <gi...@googlemail.com> wrote:

> I have to make calls to an customers ASP.NET RESTful Service. This service
> is protecetd by a windows authentification.
>
> As far as I assume, this means, the user will use a browser on a windows
> computer inside their company. They open my web-app that is hosted outside
> their company. From this web-Apap I call again the REST-Service inside this
> company. To have permission to the service I have to send the user
> authentification data.
>
> My question: What do I (in the JSF-web-app outside the company) have to do
> to deliver the user-information towards the REST-service?
>
> Has anybody done something like this?
>
>
> Thanks in advance,
>
> Gio
>