When we provide OOB security handlers ideally they should build authentication context and pass that information throughout execution flow. Please have a look at on this[1].
[1] http://docs.spring.io/spring-security/site/docs/current/apidocs/org/springframework/security/core/context/SecurityContext.html Thanks, sanjeewa. On Fri, Nov 4, 2016 at 10:05 AM, Thusitha Thilina Dayaratne < thusit...@wso2.com> wrote: > Hi Sanjeewa, > > I didn't get the exact point that you mentioned. Could you please > elaborate what we need to do from MSF4J side to cater the requirement? > > > Thanks > Thusitha > > On Thu, Nov 3, 2016 at 5:46 PM, Sanjeewa Malalgoda <sanje...@wso2.com> > wrote: > >> Hi Azeez, Thusitha, >> Shouldn't we build a authentication context once request pass through >> authentication interceptor? Usually web services frameworks do that. And >> most of the time they let users to build authentication context and users >> context so they can access some of those in application implementation. We >> should be able to add that as a property from interceptor and use it in >> next interceptors or app implementation. But shouldn't we support it OOB? >> >> Thanks, >> sanjeewa. >> >> On Thu, Nov 3, 2016 at 5:21 PM, Ishara Cooray <isha...@wso2.com> wrote: >> >>> Thanks Thusitha. >>> >>> FI >>> following info could be found as request properties. >>> >>> >>> >>> >>> Also the token info could be found in Token introspection response >>> >>> <http://connect2id.com/products/server/docs/api/token-introspection#introspection-response> >>> >>> Thanks & Regards, >>> Ishara Cooray >>> Senior Software Engineer >>> Mobile : +9477 262 9512 >>> WSO2, Inc. | http://wso2.com/ >>> Lean . Enterprise . Middleware >>> >>> On Thu, Nov 3, 2016 at 10:30 AM, Thusitha Thilina Dayaratne < >>> thusit...@wso2.com> wrote: >>> >>>> Hi Ishara, >>>> >>>> AFAIK you should be able to get that information through the request >>>> object. >>>> e.g request.getProperties() >>>> >>>> Thanks >>>> Thusitha >>>> >>>> On Thu, Nov 3, 2016 at 10:24 AM, Ishara Cooray <isha...@wso2.com> >>>> wrote: >>>> >>>>> +Shafreen, Sanjeewa, Kishanthan >>>>> >>>>> Hi, >>>>> >>>>> With regard to C5 implementation, i need to get api request properties >>>>> such as Message.BASE_PATH, Message.PATH_INFO, Message.HTTP_REQUEST_METHOD >>>>> for scope validation of a rest api call. >>>>> >>>>> In Interceptor interface we have precall method which i can use to get >>>>> above information. >>>>> >>>>> public boolean preCall(Request request, Response responder, >>>>> ServiceMethodInfo serviceMethodInfo) >>>>> >>>>> Appreciate if you can provide the usage of the above to get http >>>>> request info and token info. >>>>> >>>>> >>>>> Thanks. >>>>> Ishara >>>>> >>>>> >>>>> _______________________________________________ >>>>> Dev mailing list >>>>> Dev@wso2.org >>>>> http://wso2.org/cgi-bin/mailman/listinfo/dev >>>>> >>>>> >>>> >>>> >>>> -- >>>> Thusitha Dayaratne >>>> Software Engineer >>>> WSO2 Inc. - lean . enterprise . middleware | wso2.com >>>> >>>> Mobile +94712756809 >>>> Blog alokayasoya.blogspot.com >>>> About http://about.me/thusithathilina >>>> <http://wso2.com/signature> >>>> >>>> >>> >> >> >> -- >> >> *Sanjeewa Malalgoda* >> WSO2 Inc. >> Mobile : +94713068779 >> >> <http://sanjeewamalalgoda.blogspot.com/>blog >> :http://sanjeewamalalgoda.blogspot.com/ >> <http://sanjeewamalalgoda.blogspot.com/> >> >> >> > > > -- > Thusitha Dayaratne > Software Engineer > WSO2 Inc. - lean . enterprise . middleware | wso2.com > > Mobile +94712756809 > Blog alokayasoya.blogspot.com > About http://about.me/thusithathilina > <http://wso2.com/signature> > > -- *Sanjeewa Malalgoda* WSO2 Inc. Mobile : +94713068779 <http://sanjeewamalalgoda.blogspot.com/>blog :http://sanjeewamalalgoda.blogspot.com/ <http://sanjeewamalalgoda.blogspot.com/>
_______________________________________________ Dev mailing list Dev@wso2.org http://wso2.org/cgi-bin/mailman/listinfo/dev