You are viewing a plain text version of this content. The canonical link for it is here.

Posted to commits@activemq.apache.org by "Hiram Chirino (JIRA)" <ji...@apache.org> on 2011/08/26 05:11:33 UTC

[jira] [Created] (APLO-83) Apollo REST API should support cookie/session based authentication

Apollo REST API should support cookie/session based authentication
------------------------------------------------------------------

                 Key: APLO-83
                 URL: https://issues.apache.org/jira/browse/APLO-83
             Project: ActiveMQ Apollo
          Issue Type: New Feature
          Components: apollo-web
            Reporter: Hiram Chirino
            Assignee: Hiram Chirino
             Fix For: 1.0-beta5


The rest API should support the following routs:

/signin : to pass user/password credentials and establish a session maintained via cookies
/signout : to invalidate the session
/whoami : to query what the principals associated with the logged in session.

Also if the "AuthPrompt:false" http header is included in the request, then an unauthorized response should not include the "WWW-Authenticate" header to avoid prompting the user via basic auth.


--
This message is automatically generated by JIRA.
For more information on JIRA, see: http://www.atlassian.com/software/jira

[jira] [Resolved] (APLO-83) Apollo REST API should support cookie/session based authentication

Posted by "Hiram Chirino (JIRA)" <ji...@apache.org>.

     [ https://issues.apache.org/jira/browse/APLO-83?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel ]

Hiram Chirino resolved APLO-83.
-------------------------------

    Resolution: Fixed

> Apollo REST API should support cookie/session based authentication
> ------------------------------------------------------------------
>
>                 Key: APLO-83
>                 URL: https://issues.apache.org/jira/browse/APLO-83
>             Project: ActiveMQ Apollo
>          Issue Type: New Feature
>          Components: apollo-web
>            Reporter: Hiram Chirino
>            Assignee: Hiram Chirino
>             Fix For: 1.0-beta5
>
>
> The rest API should support the following routs:
> /signin : to pass user/password credentials and establish a session maintained via cookies
> /signout : to invalidate the session
> /whoami : to query what the principals associated with the logged in session.
> Also if the "AuthPrompt:false" http header is included in the request, then an unauthorized response should not include the "WWW-Authenticate" header to avoid prompting the user via basic auth.

--
This message is automatically generated by JIRA.
For more information on JIRA, see: http://www.atlassian.com/software/jira