users@jersey.java.net

[Jersey] Re: forwarding from unprotected resource to protected resource without authentication

From: John Yeary <johnyeary_at_gmail.com>
Date: Tue, 14 Feb 2012 19:03:12 -0500

I guess it really depends on how they are accessing the first resource. You
can use HTTPBasicAuthFilter, or HTTPDigestAuthFilter to provide
authentication.

SSL does not require anything special per se. You can simply redirect them
there. Authentication is separate from transport level security.

____________________________

John Yeary
____________________________

<http://javaevangelist.blogspot.com/> <https://twitter.com/jyeary>
<http://www.youtube.com/johnyeary>
  <http://www.linkedin.com/in/jyeary>
<https://plus.google.com/112146428878473069965>
  <http://www.facebook.com/jyeary>
<http://feeds.feedburner.com/JavaEvangelistJohnYearysBlog>
  <http://netbeans.org/people/84414-jyeary>
____________________________

"Far better it is to dare mighty things, to win glorious triumphs, even
though checkered by failure, than to take rank with those poor spirits who
neither enjoy much nor suffer much, because they live in the gray twilight
that knows not victory nor defeat."
-- Theodore Roosevelt



On Tue, Feb 14, 2012 at 12:12 PM, tmp <le_tmp_at_gmx.de> wrote:

> hi!
>
> the reason why i want to do that is, because i want to offer ssl encrypted
> communication for the resource method B.
>
> i have also an internal area where i need a form authentication, so my
> web.xml contains <auth-method>FORM</auth-method>
>
> is there a possibility to change the auth-method for an arbritary resource
> method?
>
> thanks for your advice!
>
> --
> View this message in context:
> http://jersey.576304.n2.nabble.com/forwarding-from-unprotected-resource-to-protected-resource-without-authentication-tp7283941p7284702.html
> Sent from the Jersey mailing list archive at Nabble.com.
>