subject:"\[Acegisecurity\-developer\] setting attributes for remember\-me cookie"

Re: [Acegisecurity-developer] setting attributes for remember-me cookie

2006-03-03 Thread Tim Kettering

Ben,

I actually filed a JIRA issue on it yesterday, and submitted a patch:

http://opensource.atlassian.com/projects/spring/browse/SEC-206

However, I had hoped to have some discussion on the list before
submitting the patch because there was some questions about how
defaults should be handled, and whether setting the path should be an
property (or just implicitly set to root), or some mix of the two.

The patch I submitted implicitly sets to root..  more details are in
the jira issue and the patch itself.  Hopefully it's useful.

Feel free to discuss this further if you feel it needs to offer more
flexibility.  Thanks!

-tim


On 3/2/06, Ben Alex [EMAIL PROTECTED] wrote:
 Tim Kettering wrote:
  I scoured the forums and mailing list and did not find anyone bringing
  up this issue.   I suspect it's because everyone (?) so far might have
  been using the filter based login.  Which we are not, so this would
  not be a problem for them.
 
 
 Hi Tim

 If you are able to provide a JIRA patch that will provide this
 flexibility, I would be happy to apply it for you.

 Cheers
 Ben



 ---
 This SF.Net email is sponsored by xPML, a groundbreaking scripting language
 that extends applications into web and mobile media. Attend the live webcast
 and join the prime developer group breaking into this new coding territory!
 http://sel.as-us.falkag.net/sel?cmd=lnkkid=110944bid=241720dat=121642
 ___
 Home: http://acegisecurity.org
 Acegisecurity-developer mailing list
 Acegisecurity-developer@lists.sourceforge.net
 https://lists.sourceforge.net/lists/listinfo/acegisecurity-developer



---
This SF.Net email is sponsored by xPML, a groundbreaking scripting language
that extends applications into web and mobile media. Attend the live webcast
and join the prime developer group breaking into this new coding territory!
http://sel.as-us.falkag.net/sel?cmd=lnkkid0944bid$1720dat1642
___
Home: http://acegisecurity.org
Acegisecurity-developer mailing list
Acegisecurity-developer@lists.sourceforge.net
https://lists.sourceforge.net/lists/listinfo/acegisecurity-developer

Re: [Acegisecurity-developer] setting attributes for remember-me cookie

2006-03-02 Thread Ben Alex


Tim Kettering wrote:

I scoured the forums and mailing list and did not find anyone bringing
up this issue.   I suspect it's because everyone (?) so far might have
been using the filter based login.  Which we are not, so this would
not be a problem for them.

  

Hi Tim

If you are able to provide a JIRA patch that will provide this 
flexibility, I would be happy to apply it for you.


Cheers
Ben



---
This SF.Net email is sponsored by xPML, a groundbreaking scripting language
that extends applications into web and mobile media. Attend the live webcast
and join the prime developer group breaking into this new coding territory!
http://sel.as-us.falkag.net/sel?cmd=lnkkid=110944bid=241720dat=121642
___
Home: http://acegisecurity.org
Acegisecurity-developer mailing list
Acegisecurity-developer@lists.sourceforge.net
https://lists.sourceforge.net/lists/listinfo/acegisecurity-developer

[Acegisecurity-developer] setting attributes for remember-me cookie

2006-02-24 Thread Tim Kettering

Hi Everyone.

Mabye there's already a really simple solution that's been staring me
in the face but I'm not seeing it.  I'm setting up the remember-me
functionality for this project I'm working on, and due to project
technical considerations, I've have to re-implement parts of the
remember-me in the login controller instead of using the
authentication filter.

So basically what's happening is that on a successful login, the login
controller will be making a call to the
rememberMeServices.loginSuccess(), to set the remember-me cookie.

But when I set out to test it, it didn't work.  I dug around a bit and
I think I found the problem, the application runs under the context
/foo, and the login controller url is found at /foo/login, so the
acegi remember-me cookie gets set with a path of /foo/login - which
makes it fall out of scope when accessing /foo, if i understand the
functionality of cookies right.

So I've been looking at the code in acegi, and it seems like a Cookie
is simply created with defaults in the TokenBasedRememberMeServices.  
So it would appear to me that I would need to subclass certain parts
of this code to get it to set the path to something different than the
default.

I scoured the forums and mailing list and did not find anyone bringing
up this issue.   I suspect it's because everyone (?) so far might have
been using the filter based login.  Which we are not, so this would
not be a problem for them.

So, I thought I'd bring it up on the list.. see what you guys think
should be done.

-tim


---
This SF.Net email is sponsored by xPML, a groundbreaking scripting language
that extends applications into web and mobile media. Attend the live webcast
and join the prime developer group breaking into this new coding territory!
http://sel.as-us.falkag.net/sel?cmd=lnkkid0944bid$1720dat1642
___
Home: http://acegisecurity.org
Acegisecurity-developer mailing list
Acegisecurity-developer@lists.sourceforge.net
https://lists.sourceforge.net/lists/listinfo/acegisecurity-developer

Re: [Acegisecurity-developer] setting attributes for remember-me cookie

Re: [Acegisecurity-developer] setting attributes for remember-me cookie

[Acegisecurity-developer] setting attributes for remember-me cookie

3 matches

Site Navigation

Mail list logo

Footer information