Need for SSO and alternative authentication mechanisms

google-code-export / jwebsocket

Automatically exported from code.google.com/p/jwebsocket

1 stars 3 forks source link

Need for SSO and alternative authentication mechanisms #44

Open GoogleCodeExporter opened 9 years ago

GoogleCodeExporter commented 9 years ago

We want to introduce an authentication API and various implementations of that. 
For now we only provide the jWebSocket.xml to configure users, rights and 
roles. This should be done via database tables, LDAP, Tomcat sessions etc. We 
also strive to implement SSO ASAP.

Original issue reported on code.google.com by fivefeetfurther@gmail.com on 26 Aug 2010 at 12:17

GoogleCodeExporter commented 9 years ago

perhaps the use of the Java Authentication and Authorization Service (JAAS) 
Standard can speed up the developement and increase the interopability since 
there are already lots of different Backends (eg. for databases, PAM etc..) and 
every Java EE Application Server seems to include a JAAS-Provider.

www.jguard.net (a JAAS Based Framework) may also be of interest.

Original comment by gimpelmo...@gmail.com on 8 Sep 2010 at 11:40

GoogleCodeExporter commented 9 years ago

JAAS is a good suggestion - we will surely include that in our discussions - 
thanks!

Original comment by fivefeetfurther@gmail.com on 9 Sep 2010 at 12:56

GoogleCodeExporter commented 9 years ago

Tutorials available at:

German:
http://www.dpunkt.de/java/Programmieren_mit_Java/Sicherheit/14.html

English:
http://download.oracle.com/javase/6/docs/jre/api/security/jaas/spec/com/sun/secu
rity/auth/module/LdapLoginModule.html
http://server.pramati.com/docstore/1270002/index.htm
http://fusesource.com/docs/broker/5.3/security/Auth-JAAS-LDAPAuthentPlugin.html

Original comment by fivefeetfurther@gmail.com on 9 Sep 2010 at 1:16

GoogleCodeExporter commented 9 years ago

We especially want to provide an authentication using openID as well as 
activeDirectory. The interface for the developers to use this should be 
identical.

Original comment by fivefeetfurther@gmail.com on 14 Oct 2010 at 1:50

Added labels: Type-Enhancement
Removed labels: Type-Defect

GoogleCodeExporter commented 9 years ago

In addition to openId we also want to provide NTLM and Kerberos Authentication 
as well as a .jar to authenticate against a JDBC source.

Original comment by fivefeetfurther@gmail.com on 14 Oct 2010 at 1:52

GoogleCodeExporter commented 9 years ago

Original comment by fivefeetfurther@gmail.com on 14 Oct 2010 at 2:40

Added labels: Milestone-v1.1

GoogleCodeExporter commented 9 years ago

We decided to integrate Spring security to introduce flexible authenticaton and 
authorizaion mechanism. We will notify you as soon as we have news on this 
topic.
Thanks in advance for your patience.
(also notify user ahnsb123 in the forum).

Original comment by fivefeetfurther@gmail.com on 2 Sep 2011 at 10:41