google-code-export / jwebsocket

Automatically exported from code.google.com/p/jwebsocket
1 stars 3 forks source link

Need for SSO and alternative authentication mechanisms #44

Open GoogleCodeExporter opened 9 years ago

GoogleCodeExporter commented 9 years ago
We want to introduce an authentication API and various implementations of that. 
For now we only provide the jWebSocket.xml to configure users, rights and 
roles. This should be done via database tables, LDAP, Tomcat sessions etc. We 
also strive to implement SSO ASAP.

Original issue reported on code.google.com by fivefeetfurther@gmail.com on 26 Aug 2010 at 12:17

GoogleCodeExporter commented 9 years ago
perhaps the use of the Java Authentication and Authorization Service (JAAS) 
Standard can speed up the developement and increase the interopability since 
there are already lots of different Backends (eg. for databases, PAM etc..) and 
every Java EE Application Server seems to include a JAAS-Provider.

www.jguard.net (a JAAS Based Framework) may also be of interest. 

Original comment by gimpelmo...@gmail.com on 8 Sep 2010 at 11:40

GoogleCodeExporter commented 9 years ago
JAAS is a good suggestion - we will surely include that in our discussions - 
thanks!

Original comment by fivefeetfurther@gmail.com on 9 Sep 2010 at 12:56

GoogleCodeExporter commented 9 years ago
Tutorials available at:

German:
http://www.dpunkt.de/java/Programmieren_mit_Java/Sicherheit/14.html

English:
http://download.oracle.com/javase/6/docs/jre/api/security/jaas/spec/com/sun/secu
rity/auth/module/LdapLoginModule.html
http://server.pramati.com/docstore/1270002/index.htm
http://fusesource.com/docs/broker/5.3/security/Auth-JAAS-LDAPAuthentPlugin.html

Original comment by fivefeetfurther@gmail.com on 9 Sep 2010 at 1:16

GoogleCodeExporter commented 9 years ago
We especially want to provide an authentication using openID as well as 
activeDirectory. The interface for the developers to use this should be 
identical.

Original comment by fivefeetfurther@gmail.com on 14 Oct 2010 at 1:50

GoogleCodeExporter commented 9 years ago
In addition to openId we also want to provide NTLM and Kerberos Authentication 
as well as a .jar to authenticate against a JDBC source.

Original comment by fivefeetfurther@gmail.com on 14 Oct 2010 at 1:52

GoogleCodeExporter commented 9 years ago

Original comment by fivefeetfurther@gmail.com on 14 Oct 2010 at 2:40

GoogleCodeExporter commented 9 years ago
We decided to integrate Spring security to introduce flexible authenticaton and 
authorizaion mechanism. We will notify you as soon as we have news on this 
topic.
Thanks in advance for your patience.
(also notify user ahnsb123 in the forum).

Original comment by fivefeetfurther@gmail.com on 2 Sep 2011 at 10:41