More specifically I was wondering if it's possible to pass in this URL http://localhost:8080/drools-guvnor/ securityService?username=admin&password=admin<http://localhost:8080/drools-guvnor/%20securityService?username=admin&password=admin>
Is it possible to do this. From my research it seems to be that there is a seam authentication filter that needs to be bypassed. Does anyone have any ideas on this. Please let me know Thanks, From: rules-users-boun...@lists.jboss.org [mailto:rules-users-boun...@lists.jboss.org] On Behalf Of Swindells, Thomas Sent: Friday, June 18, 2010 4:23 AM To: Rules Users List Subject: Re: [rules-users] HELP Drools Guvnor What you are asking for is incredibly insecure and bad for so many reasons... If you really want to be passing around your passwords in the url for anybody to see then what you may be able to do is to use the standard http method of embedding the credentials: http://user:passw...@localhost:8080/drools-guvnor/mylinktoguvnor This would then use standard http authentication with the webserver guvnor is installed within. You would then configure guvnor to use its containers security to perform the authentication. The guvnor docs may give you some hints where to start. http://downloads.jboss.com/drools/docs/5.0.1.26597.FINAL/drools-guvnor/html_single/index.html#d0e149 Thomas From: rules-users-boun...@lists.jboss.org [mailto:rules-users-boun...@lists.jboss.org] On Behalf Of Baig, Kaleem Sent: 17 June 2010 21:04 To: rules-users@lists.jboss.org Subject: [rules-users] HELP Drools Guvnor I have been able to create users for Guvnor as admin and guest. But what I want is, instead of going to the login form http://localhost:8080/drools-guvnor/org.drools.guvnor.Guvnor/Guvnor.html I should be able to pass in the username and password through a query string. Such as shown below: http://localhost:8080/drools-guvnor/mylinktoguvnor?username=admin&password=admin Is there a way to do this, please let me know. ________________________________ ************************************************************************************** This message is confidential and intended only for the addressee. If you have received this message in error, please immediately notify the postmas...@nds.com and delete it from your system as well as any copies. The content of e-mails as well as traffic data may be monitored by NDS for employment and security purposes. To protect the environment please do not print this e-mail unless necessary. NDS Limited. Registered Office: One London Road, Staines, Middlesex, TW18 4EX, United Kingdom. A company registered in England and Wales. Registered no. 3080780. VAT no. GB 603 8808 40-00 ************************************************************************************** This E-Mail has been scanned for viruses.
_______________________________________________ rules-users mailing list rules-users@lists.jboss.org https://lists.jboss.org/mailman/listinfo/rules-users
