[jira] Commented: (SLING-1575) Authentication API and Handler Improvements

["Justin Edelson (JIRA)" <ji...@apache.org>]

    [ https://issues.apache.org/jira/browse/SLING-1575?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=12882559#action_12882559 ] 

Justin Edelson commented on SLING-1575:
---------------------------------------

There was some mention of merging commons.auth into the engine bundle. Should that be done in concert with this issue?

> Authentication API and Handler Improvements
> -------------------------------------------
>
>                 Key: SLING-1575
>                 URL: https://issues.apache.org/jira/browse/SLING-1575
>             Project: Sling
>          Issue Type: Improvement
>          Components: API, Commons, Extensions
>            Reporter: Felix Meschberger
>
> Proposing the following enhancement to the Commons Auth bundle as well as the two existing form based authentication handlers (Form Based Authentication Handler and OpenID Authentication Handler):
>   * Create a new o.a.sling.api.auth package with the Authenticator interface and the NoAuthenticationHandler exception
>   * Create an AbstractAuthenticationFormServlet and AbstractAuthenticationHandler in Commons Auth (o.a.sling.commons.auth.spi)
>   * Extend the form servlets in the Form and OpenID handlers from the abstract form servlet
>   * Extend the authentication handlers from the abstract handler
> The new o.a.sling.api.auth package is the current o.a.sling.commons.auth package without the AuthenticationSupport interface. The reason for this is, that the Authenticator interface can be used by Sling applications to request users to login. The AuthenticationSupport interface on the other hand is closed tied into the Commons Auth implementation and is not generally used by Sling Applications.

-- 
This message is automatically generated by JIRA.
-
You can reply to this email to add a comment to the issue online.