You are viewing a plain text version of this content. The canonical link for it is here.

Posted to issues@cxf.apache.org by "Freeman Fang (JIRA)" <ji...@apache.org> on 2013/07/29 11:27:48 UTC

[jira] [Assigned] (CXF-5165) add a JAAS authenticator for ServiceListPage

     [ https://issues.apache.org/jira/browse/CXF-5165?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel ]

Freeman Fang reassigned CXF-5165:
---------------------------------

    Assignee: Freeman Fang
    
> add a JAAS authenticator for ServiceListPage
> --------------------------------------------
>
>                 Key: CXF-5165
>                 URL: https://issues.apache.org/jira/browse/CXF-5165
>             Project: CXF
>          Issue Type: Improvement
>            Reporter: Freeman Fang
>            Assignee: Freeman Fang
>
> currently we already have an org.apache.cxf.servlet.hide-service-list-page flag to indicate hide service list page or not, but sometimes users wanna a username/password to protect this page so that request with correct credential can view this page. Introduce a ServiceListJAASAuthenticator class which can delegate the authentication to container level realm can make this simple, if http header has correct credential, then return the servicelist page, otherwise return 401 HTTP code.
> Should introduce another two flags, one specify the realm name, the other one indicate if need auth or not(default value is false to keep the behavior as is)

--
This message is automatically generated by JIRA.
If you think it was sent incorrectly, please contact your JIRA administrators
For more information on JIRA, see: http://www.atlassian.com/software/jira