Is there any way you can use another email then this one to have your conversations? Thank you!
-----Original Message----- From: Arjan Tijms [mailto:arjan.ti...@gmail.com] Sent: Wednesday, October 14, 2015 6:01 AM To: dev@tomcat.apache.org Subject: Re: Consider support for the Servlet profile of JSR 196 (JASPIC) in Tomcat 7.0.x Hi there, Haven't seen updates for some time here. Wonder what the current status is and what exactly happened in the last months. Last commits in the Tomcat repo are from 3 months ago. Kind regards, Arjan Tijms On Thu, Jun 11, 2015 at 10:39 AM, markt [via Tomcat] <ml-node+s10n5035913...@n6.nabble.com> wrote: > On 10/06/2015 16:43, Arjan Tijms wrote: > >> Hi, >> >> On Wed, Jun 10, 2015 at 3:28 PM, markt [via Tomcat] < [hidden email]> >> wrote: >> >>> I don't really understand what the requirement is here. Can you >>> expand / point me to the part of the spec? >>> >> >> It's simply that from within a SAM you can forward/include to a >> Servlet using a dispatcher, such that the output of that Servlet is >> inserted in the response. > > Thanks for the clarification. You can do that easily from a Valve in a > couple of lines of code. No need for extra internal plumbing that I can see. > > Mark > >> >> It's in section 3.8.3.4 of the JASPIC spec: >> >> >> "3.8.3.4 >> Forwards and Includes by Server Authentication Modules >> >> The message processing runtime must support the acquisition and use >> of RequestDispatcher objects by authentication modules within their >> processing of validateRequest. >> >> Under the constraints defined by RequestDispatcher, authentication >> modules must be able to forward and include using the request and >> response objects passed in MessageInfo. In particular, an >> authentication module must be able to acquire a RequestDispatcher >> from the request obtained from MessageInfo, and uses it to forward >> the request (and response) to a login form. >> Authentication modules should catch and rethrow as an AuthException >> any exception thrown by these methods." >> >> >> A test/example showing this in practice is the following: >> >> >> https://github.com/javaee-samples/javaee7-samples/tree/master/jaspic/ >> dispatching >> >> Specifically, this code shows both an include and a forward done by a SAM: >> >> public AuthStatus validateRequest(MessageInfo messageInfo, Subject >> clientSubject, Subject serviceSubject) throws AuthException { >> try { >> HttpServletRequest request = (HttpServletRequest) >> messageInfo.getRequestMessage(); >> HttpServletResponse response = (HttpServletResponse) >> messageInfo.getResponseMessage(); >> >> if ("include".equals(request.getParameter("dispatch"))) { >> request.getRequestDispatcher("/includedServlet") >> .include(request, response); >> >> // "Do nothing", required protocol when returning SUCCESS >> handler.handle(new Callback[] { new >> CallerPrincipalCallback(clientSubject, (Principal) null) }); >> >> // When using includes, the response stays open and >> the main >> // resource can also write to the response >> return SUCCESS; >> >> } else { >> request.getRequestDispatcher("/forwardedServlet") >> .forward(request, response); >> >> // MUST NOT invoke the resource, so CAN NOT return >> SUCCESS here. >> return SEND_CONTINUE; >> } >> >> } catch (IOException | ServletException | >> UnsupportedCallbackException e) { >> throw (AuthException) new AuthException().initCause(e); >> } >> } >> >> >> Sounds good. Thanks for the tip. >>> >> >> You're welcome ;) >> >> Kind regards, >> Arjan Tijms >> >> >> >> >>> >>> Cheers, >>> >>> mark >>> >>> -------------------------------------------------------------------- >>> - To unsubscribe, e-mail: [hidden email] >>> <http:///user/SendEmail.jtp?type=node&node=5035887&i=0> >>> For additional commands, e-mail: [hidden email] >>> <http:///user/SendEmail.jtp?type=node&node=5035887&i=1> >>> >>> >>> >>> ------------------------------ >>> If you reply to this email, your message will be added to the >>> discussion >>> below: >>> >>> >>> http://tomcat.10.x6.nabble.com/Consider-support-for-the-Servlet-prof >>> ile-of-JSR-196-JASPIC-in-Tomcat-7-0-x-tp4993387p5035887.html >>> To unsubscribe from Consider support for the Servlet profile of JSR >>> 196 >>> (JASPIC) in Tomcat 7.0.x, click here < . >>> NAML >>> >>> <http://tomcat.10.x6.nabble.com/template/NamlServlet.jtp?macro=macro >>> _viewer&id=instant_html%21nabble%3Aemail.naml&base=nabble.naml.names >>> paces.BasicNamespace-nabble.view.web.template.NabbleNamespace-nabble >>> .view.web.template.NodeNamespace&breadcrumbs=notify_subscribers%21na >>> bble%3Aemail.naml-instant_emails%21nabble%3Aemail.naml-send_instant_ >>> email%21nabble%3Aemail.naml> >>> >> >> >> >> >> -- >> View this message in context: >> http://tomcat.10.x6.nabble.com/Consider-support-for-the-Servlet-profi >> le-of-JSR-196-JASPIC-in-Tomcat-7-0-x-tp4993387p5035891.html >> Sent from the Tomcat - Dev mailing list archive at Nabble.com. >> > > > --------------------------------------------------------------------- > To unsubscribe, e-mail: [hidden email] For additional commands, > e-mail: [hidden email] > > > > ________________________________ > If you reply to this email, your message will be added to the > discussion > below: > http://tomcat.10.x6.nabble.com/Consider-support-for-the-Servlet-profil > e-of-JSR-196-JASPIC-in-Tomcat-7-0-x-tp4993387p5035913.html > To unsubscribe from Consider support for the Servlet profile of JSR > 196 > (JASPIC) in Tomcat 7.0.x, click here. > NAML -- View this message in context: http://tomcat.10.x6.nabble.com/Consider-support-for-the-Servlet-profile-of-JSR-196-JASPIC-in-Tomcat-7-0-x-tp4993387p5040745.html Sent from the Tomcat - Dev mailing list archive at Nabble.com. --------------------------------------------------------------------- To unsubscribe, e-mail: dev-unsubscr...@tomcat.apache.org For additional commands, e-mail: dev-h...@tomcat.apache.org
