You are viewing a plain text version of this content. The canonical link for it is here.

Posted to dev@sling.apache.org by "Lars Trieloff (JIRA)" <ji...@apache.org> on 2008/01/18 15:10:34 UTC

[jira] Commented: (SLING-175) support for form-based authentication

    [ https://issues.apache.org/jira/browse/SLING-175?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=12560390#action_12560390 ] 

Lars Trieloff commented on SLING-175:
-------------------------------------

I would propose to implement a client-side wrapping of the current HTTP basic authentication that would allow styled HTML forms for the user interface, but still use sessionless HTTP-Authorization headers for actual data transmission. The implementation we have done for Mindquarry handles login, wrong credentials, password change and logout transparently without ever showing the browser's login window.

> support for form-based authentication
> -------------------------------------
>
>                 Key: SLING-175
>                 URL: https://issues.apache.org/jira/browse/SLING-175
>             Project: Sling
>          Issue Type: Improvement
>          Components: Core
>            Reporter: Michael Marth
>            Priority: Minor
>
> Currently, Sling supports Basic Auth for authentication (and corresponding mapping of users and rights to the underlying repository). I would like to request that we can also have form-based authentication.

-- 
This message is automatically generated by JIRA.
-
You can reply to this email to add a comment to the issue online.