Re: Wicket-auth-roles + EJB 3 (Authentication and Authorization)
jraanamo wrote: - how did you get the principal all the way to the ejb container (via jndi context?) and which container were you using? - were you able to handle authorization via e.g. @RolesAllowed annotations? Ok, I got principal delegated to ejb container by using Glassfish's ProgrammaticLogin - if anyone is interested. The problem though is that no roles are returned by this api so I cannot populate hive's LoginContext properly. I wonder is Swarm+EJB3 is a good idea or maybe I should stick with auth-roles. Any experiences would be welcome. -- View this message in context: http://www.nabble.com/Wicket-auth-roles-%2B-EJB-3-%28Authentication-and-Authorization%29-tp22649841p25616404.html Sent from the Wicket - User mailing list archive at Nabble.com. - To unsubscribe, e-mail: users-unsubscr...@wicket.apache.org For additional commands, e-mail: users-h...@wicket.apache.org
Re: Wicket-auth-roles + EJB 3 (Authentication and Authorization)
m_e wrote: Hi Barry, I've running three webapps using wicket (1.3) wicket-security (SWARM/WASP) together with JAAS. It's working great. Ok, the logout isn't very nice but it's doing it's job. Hi, Couple of questions: - what did you do to pass the login details to the ejb3 container (via jndi context?) and which container were you using? - were you able to handle authorization via e.g. @RolesAllowed annotations? -jukka- -- View this message in context: http://www.nabble.com/Wicket-auth-roles-%2B-EJB-3-%28Authentication-and-Authorization%29-tp22649841p25578029.html Sent from the Wicket - User mailing list archive at Nabble.com. - To unsubscribe, e-mail: users-unsubscr...@wicket.apache.org For additional commands, e-mail: users-h...@wicket.apache.org
Re: Wicket-auth-roles + EJB 3 (Authentication and Authorization)
Hi Berry, can you post some code to help me? The tutorial on http://cwiki.apache.org/WICKET/servlet-container-authentication.html doesn't work to me. I receive an error on j_security_check redirection about resource not found (or similar). Thank you alf Barry van Someren-5 wrote: I've decided to try the integration as listed in the Wiki and use container authentication for now. For now it seems to work... -- View this message in context: http://www.nabble.com/Wicket-auth-roles-%2B-EJB-3-%28Authentication-and-Authorization%29-tp22649841p23619776.html Sent from the Wicket - User mailing list archive at Nabble.com. - To unsubscribe, e-mail: users-unsubscr...@wicket.apache.org For additional commands, e-mail: users-h...@wicket.apache.org
Re: Wicket-auth-roles + EJB 3 (Authentication and Authorization)
Hi, Sorry for not getting back sooner. I've decided to try the integration as listed in the Wiki and use container authentication for now. For now it seems to work, but if it doesn't I'll give you solution a try (or I might refactor to it at some point as it sounds nicer) Thank you for your help! On Mon, Mar 23, 2009 at 8:51 AM, Marc Ende mli...@e-beyond.de wrote: Hi Barry, I've running three webapps using wicket (1.3) wicket-security (SWARM/WASP) together with JAAS. It's working great. Ok, the logout isn't very nice but it's doing it's job. At first I had the same impression that's a hack and complicated but now, using it several times. It looks easy and it makes sense to me. Thinks I had to do: - Create a CustomPrincipal Just let it implement org.apache.wicket.security.hive.authorization.Principal - Create a CustomSubject Extends org.apache.wicket.security.hive.authentication.DefaultSubject - Create a CustomLoginContext Extends org.apache.wicket.security.hive.authentication.LoginContext implement the JAAS Login in the login() method of the CustomLoginContext and take care that the subject is filled with the username and the gorups (of jaas) are filled in as principals in the subject. - Modify your WebApplication to extend Swam Extend org.apache.wicket.security.swarm.SwarmWebApplication implement setUpHive and getLoginPage - create your hive-file. You wanted to use w1.4, so I think that you'll have to patch swarm/wasp a little bit to work with 1.4 M. Barry van Someren schrieb: Hi all, I've been busy on a project of mine that uses Wicket 1.4 RC 2 as a frontend to a collection of EJB3 beans containing my business logic. As users of this application will be able to use webservices as well to use the application I'd also like to use authentication and more importantly authorization on the side of the EJB's I'm fairly familiar with EJB security but not very familiar with Wicket security and I'm wondering what is the best course of action to authenticate a user inside the Wicket application AND to put these credentials inside the EJBContext? I'm looking at http://cwiki.apache.org/WICKET/servlet-container-authentication.html and seeing if I can somehow integrate the two, but it sounds a bit like a hack. Any other suggestions worth looking at? Google is not returning much unfortunately. Many thanks! - To unsubscribe, e-mail: users-unsubscr...@wicket.apache.org For additional commands, e-mail: users-h...@wicket.apache.org -- Barry van Someren --- LinkedIn: http://www.linkedin.com/in/barryvansomeren Skype: BvsomerenSprout Blog: http://blog.bvansomeren.com KvK: 27317624 irc: BarryNL @ FreeNode - To unsubscribe, e-mail: users-unsubscr...@wicket.apache.org For additional commands, e-mail: users-h...@wicket.apache.org
Re: Wicket-auth-roles + EJB 3 (Authentication and Authorization)
Hi Barry, I've running three webapps using wicket (1.3) wicket-security (SWARM/WASP) together with JAAS. It's working great. Ok, the logout isn't very nice but it's doing it's job. At first I had the same impression that's a hack and complicated but now, using it several times. It looks easy and it makes sense to me. Thinks I had to do: - Create a CustomPrincipal Just let it implement org.apache.wicket.security.hive.authorization.Principal - Create a CustomSubject Extends org.apache.wicket.security.hive.authentication.DefaultSubject - Create a CustomLoginContext Extends org.apache.wicket.security.hive.authentication.LoginContext implement the JAAS Login in the login() method of the CustomLoginContext and take care that the subject is filled with the username and the gorups (of jaas) are filled in as principals in the subject. - Modify your WebApplication to extend Swam Extend org.apache.wicket.security.swarm.SwarmWebApplication implement setUpHive and getLoginPage - create your hive-file. You wanted to use w1.4, so I think that you'll have to patch swarm/wasp a little bit to work with 1.4 M. Barry van Someren schrieb: Hi all, I've been busy on a project of mine that uses Wicket 1.4 RC 2 as a frontend to a collection of EJB3 beans containing my business logic. As users of this application will be able to use webservices as well to use the application I'd also like to use authentication and more importantly authorization on the side of the EJB's I'm fairly familiar with EJB security but not very familiar with Wicket security and I'm wondering what is the best course of action to authenticate a user inside the Wicket application AND to put these credentials inside the EJBContext? I'm looking at http://cwiki.apache.org/WICKET/servlet-container-authentication.html and seeing if I can somehow integrate the two, but it sounds a bit like a hack. Any other suggestions worth looking at? Google is not returning much unfortunately. Many thanks! - To unsubscribe, e-mail: users-unsubscr...@wicket.apache.org For additional commands, e-mail: users-h...@wicket.apache.org
Wicket-auth-roles + EJB 3 (Authentication and Authorization)
Hi all, I've been busy on a project of mine that uses Wicket 1.4 RC 2 as a frontend to a collection of EJB3 beans containing my business logic. As users of this application will be able to use webservices as well to use the application I'd also like to use authentication and more importantly authorization on the side of the EJB's I'm fairly familiar with EJB security but not very familiar with Wicket security and I'm wondering what is the best course of action to authenticate a user inside the Wicket application AND to put these credentials inside the EJBContext? I'm looking at http://cwiki.apache.org/WICKET/servlet-container-authentication.html and seeing if I can somehow integrate the two, but it sounds a bit like a hack. Any other suggestions worth looking at? Google is not returning much unfortunately. Many thanks! -- Barry van Someren --- Linked in: http://www.linkedin.com/in/barryvansomeren Skype: BvsomerenSprout WWW: http://java-monitor.com/forum/index.php - To unsubscribe, e-mail: users-unsubscr...@wicket.apache.org For additional commands, e-mail: users-h...@wicket.apache.org