[jira] [Comment Edited] (KYLIN-458) OAuth Support for user login

Tue, 22 Dec 2015 12:08:55 -0800 

    [ 
https://issues.apache.org/jira/browse/KYLIN-458?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=15062468#comment-15062468
 ] 

vipin edited comment on KYLIN-458 at 12/22/15 8:08 PM:
-------------------------------------------------------

Hi Luke,
As I am testing my Oauth implementation I am getting Error due to spring 
version as we are using spring 
3.1.2.RELEASE  which has release date Jul 2012  and the first  
spring-security-oauth2 came in Nov 2012 so there is no way I  can use any  
version compatible.

Hi Luke,

As Spring OAuth needs a DispatcherServlet for its OAuth related endpoints 
I have changed dispactcher servlet to / context although there is a workaround 
so i left it for  you to decide


1. There will be lot of other changes as adding new client and saving them to 
mysqldb.
        as of now I have given only  two clients for test.

2. Right now I am using inmemory token store.

3. Same ldap config can be used for authentication provider

I think we have to create different branch for this as login mechanism will be 
changed 
and also UI for adding new client. 

test will run with kylin security commented because of two authentication 
manager and global security config

Its a simple implementation I have to add all request matcher for apis
 
flow:
1.  just login http://localhost:7070/kylin/login
2.  I have used Firefox Rest-client oauth2 authentication images(authorize.png 
,token.png)

   



was (Author: vipin77):
Hi Luke,
As I am testing my Oauth implementation I am getting Error due to spring 
version as we are using spring 
3.1.2.RELEASE  which has release date Jul 2012  and the first  
spring-security-oauth2 came in Nov 2012 so there is no way I  can use any  
version compatible.

One more doubt 

After an Oauth login flow  through Ldap Authentication Provider  do present 
flow will use this or this will be separate version.

Let's say I have registered a new client do we have to give scope to client so 
he can create cubes also ?eg. ROLE_ADMIN giving permission to create cube on 
his behalf .
   


> OAuth Support for user login
> ----------------------------
>
>                 Key: KYLIN-458
>                 URL: https://issues.apache.org/jira/browse/KYLIN-458
>             Project: Kylin
>          Issue Type: Wish
>          Components: REST Service, Web 
>            Reporter: Luke Han
>              Labels: github-import
>             Fix For: Backlog
>
>
> Support login with OAuth protocol
> ---------------- Imported from GitHub ----------------
> Url: https://github.com/KylinOLAP/Kylin/issues/47
> Created by: [lukehan|https://github.com/lukehan]
> Labels: newfeature, 
> Created at: Sat Nov 08 20:39:52 CST 2014
> State: open



--
This message was sent by Atlassian JIRA
(v6.3.4#6332)

Reply via email to