[jira] [Commented] (SHIRO-714) Use a login page outside of the current webapps web context
[ https://issues.apache.org/jira/browse/SHIRO-714?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel=16876491#comment-16876491 ] Brian Demers commented on SHIRO-714: I think i get it. Have you tried issuing a redirect from a servlet configured in the `{{successUrl}}`? > Use a login page outside of the current webapps web context > --- > > Key: SHIRO-714 > URL: https://issues.apache.org/jira/browse/SHIRO-714 > Project: Shiro > Issue Type: Improvement >Reporter: Steinar Bang >Priority: Major > > I have written > https://github.com/steinarb/authservice#forms-based-nginx-login-and-pluggable-shiro-auth-in-karaf > which is a "poor man's single sign-on" for multiple webapps running inside > the same apache karaf OSGi container. > This works but each webapp needs to implement their own login page. > I can specify a login page outside of the webapps web context like e.g. this > in shiro.ini: > {noformat} > [main] > shiro.loginUrl = ../authservice/login > {noformat} > When not authenticated, the user will be redirected to /authservice/login on > the same server, but when authenticated the user will be redirected to the > /authservice/ path. > It would be nice to be able to specify a way to redirect to a URL outside the > webapp so that I could use a single login page across all web applications. -- This message was sent by Atlassian JIRA (v7.6.3#76005)
[jira] [Commented] (SHIRO-714) Use a login page outside of the current webapps web context
[ https://issues.apache.org/jira/browse/SHIRO-714?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel=16876437#comment-16876437 ] Steinar Bang commented on SHIRO-714: The latter. Actually that bit works (see SHIRO-713), with a little help from nginx reverse proxy. What this issue is about is saving the different webapps using the shared authentication the work of creating their own login page. I.e. a way of redirecting back to the webpage originating the login. > Use a login page outside of the current webapps web context > --- > > Key: SHIRO-714 > URL: https://issues.apache.org/jira/browse/SHIRO-714 > Project: Shiro > Issue Type: Improvement >Reporter: Steinar Bang >Priority: Major > > I have written > https://github.com/steinarb/authservice#forms-based-nginx-login-and-pluggable-shiro-auth-in-karaf > which is a "poor man's single sign-on" for multiple webapps running inside > the same apache karaf OSGi container. > This works but each webapp needs to implement their own login page. > I can specify a login page outside of the webapps web context like e.g. this > in shiro.ini: > {noformat} > [main] > shiro.loginUrl = ../authservice/login > {noformat} > When not authenticated, the user will be redirected to /authservice/login on > the same server, but when authenticated the user will be redirected to the > /authservice/ path. > It would be nice to be able to specify a way to redirect to a URL outside the > webapp so that I could use a single login page across all web applications. -- This message was sent by Atlassian JIRA (v7.6.3#76005)
[jira] [Commented] (SHIRO-714) Use a login page outside of the current webapps web context
[ https://issues.apache.org/jira/browse/SHIRO-714?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel=16876425#comment-16876425 ] Brian Demers commented on SHIRO-714: Hey [~s...@dod.no]! Sounds more like an OAuth2 Auth Code Flow? Or are you trying to redirect to another webapp that will set a cookie for your domain? > Use a login page outside of the current webapps web context > --- > > Key: SHIRO-714 > URL: https://issues.apache.org/jira/browse/SHIRO-714 > Project: Shiro > Issue Type: Improvement >Reporter: Steinar Bang >Priority: Major > > I have written > https://github.com/steinarb/authservice#forms-based-nginx-login-and-pluggable-shiro-auth-in-karaf > which is a "poor man's single sign-on" for multiple webapps running inside > the same apache karaf OSGi container. > This works but each webapp needs to implement their own login page. > I can specify a login page outside of the webapps web context like e.g. this > in shiro.ini: > {noformat} > [main] > shiro.loginUrl = ../authservice/login > {noformat} > When not authenticated, the user will be redirected to /authservice/login on > the same server, but when authenticated the user will be redirected to the > /authservice/ path. > It would be nice to be able to specify a way to redirect to a URL outside the > webapp so that I could use a single login page across all web applications. -- This message was sent by Atlassian JIRA (v7.6.3#76005)