You are viewing a plain text version of this content. The canonical link for it is here.

Posted to issues@cxf.apache.org by "Freeman Fang (JIRA)" <ji...@apache.org> on 2013/07/29 11:25:50 UTC

[jira] [Created] (CXF-5165) add a JAAS authenticator for ServiceListPage

Freeman Fang created CXF-5165:
---------------------------------

             Summary: add a JAAS authenticator for ServiceListPage
                 Key: CXF-5165
                 URL: https://issues.apache.org/jira/browse/CXF-5165
             Project: CXF
          Issue Type: Improvement
            Reporter: Freeman Fang


currently we already have an org.apache.cxf.servlet.hide-service-list-page flag to indicate hide service list page or not, but sometimes users wanna a username/password to protect this page so that request with correct credential can view this page. Introduce a ServiceListJAASAuthenticator class which can delegate the authentication to container level realm can make this simple, if http header has correct credential, then return the servicelist page, otherwise return 401 HTTP code.

Should introduce another two flags, one specify the realm name, the other one indicate if need auth or not(default value is false to keep the behavior as is)

--
This message is automatically generated by JIRA.
If you think it was sent incorrectly, please contact your JIRA administrators
For more information on JIRA, see: http://www.atlassian.com/software/jira