users@jersey.java.net

[Jersey] Re: forwarding from unprotected resource to protected resource without authentication

From: tmp <le_tmp_at_gmx.de>
Date: Wed, 15 Feb 2012 01:43:11 -0800 (PST)

Ah... I found a better solution..

I just added a new security constraint to my web.xml for this particular
resource. This security constraint doesn't have the auth-constraint.. so
SSL without authentication works :)

Thanks for your help

-------- Original-Nachricht --------
> Datum: Tue, 14 Feb 2012 16:03:46 -0800 (PST)
> Von: "jyeary [via Jersey]" <ml-node+s576304n7286076h64_at_n2.nabble.com>
> An: tmp <le_tmp_at_gmx.de>
> Betreff: Re: forwarding from unprotected resource to protected resource without authentication

>
>
> I guess it really depends on how they are accessing the first resource.
> You
> can use HTTPBasicAuthFilter, or HTTPDigestAuthFilter to provide
> authentication.
>
> SSL does not require anything special per se. You can simply redirect them
> there. Authentication is separate from transport level security.
>
> ____________________________
>
> John Yeary
> ____________________________
>
> <http://javaevangelist.blogspot.com/> <https://twitter.com/jyeary>
> <http://www.youtube.com/johnyeary>
> <http://www.linkedin.com/in/jyeary>
> <https://plus.google.com/112146428878473069965>
> <http://www.facebook.com/jyeary>
> <http://feeds.feedburner.com/JavaEvangelistJohnYearysBlog>
> <http://netbeans.org/people/84414-jyeary>
> ____________________________
>
> "Far better it is to dare mighty things, to win glorious triumphs, even
> though checkered by failure, than to take rank with those poor spirits who
> neither enjoy much nor suffer much, because they live in the gray twilight
> that knows not victory nor defeat."
> -- Theodore Roosevelt
>
>
>
> On Tue, Feb 14, 2012 at 12:12 PM, tmp <le_tmp_at_gmx.de> wrote:
>
> > hi!
> >
> > the reason why i want to do that is, because i want to offer ssl
> encrypted
> > communication for the resource method B.
> >
> > i have also an internal area where i need a form authentication, so my
> > web.xml contains <auth-method>FORM</auth-method>
> >
> > is there a possibility to change the auth-method for an arbritary
> resource
> > method?
> >
> > thanks for your advice!
> >
> > --
> > View this message in context:
> >
> http://jersey.576304.n2.nabble.com/forwarding-from-unprotected-resource-to-protected-resource-without-authentication-tp7283941p7284702.html
> > Sent from the Jersey mailing list archive at Nabble.com.
> >
>
>
> _______________________________________________
> If you reply to this email, your message will be added to the discussion
> below:
> http://jersey.576304.n2.nabble.com/forwarding-from-unprotected-resource-to-protected-resource-without-authentication-tp7283941p7286076.html
>
> To unsubscribe from forwarding from unprotected resource to protected
> resource without authentication, visit
> http://jersey.576304.n2.nabble.com/template/NamlServlet.jtp?macro=unsubscribe_by_code&node=7283941&code=bGVfdG1wQGdteC5kZXw3MjgzOTQxfDI4OTEzOTc5Mg== 
-- 
Empfehlen Sie GMX DSL Ihren Freunden und Bekannten und wir
belohnen Sie mit bis zu 50,- Euro! https://freundschaftswerbung.gmx.de
--
View this message in context: http://jersey.576304.n2.nabble.com/forwarding-from-unprotected-resource-to-protected-resource-without-authentication-tp7283941p7287055.html
Sent from the Jersey mailing list archive at Nabble.com.
© Oracle | By contributing to this project, you are agreeing to the terms of use described here.