Hello,
I'm trying to switch from HTTP Basic (through an HTTPS channel) to HTTP
Digest (keeping the HTTPS channel) authentication.
I'm currently testing without HTTPS, and I was wondering how should my
'backend' store the user credentials.
Currently I'm using an MD5 h
ration. If the first
>>>> one fails, the second one sees ClientInfo.isAuthenticated() == false and
>>>> does *not* bypass its operation.
>>>>
>>>> But before you try that, consider using
>>>> CookieAuthenticator<http://restlet.org/lea
CookieAuthenticator<http://restlet.org/learn/javadocs/2.2/jee/ext/org/restlet/ext/crypto/CookieAuthenticator.html>--
>>> much of the implementation is parameterized and/or overridable.
>>>
>>>
>>> On Thu, Jan 2, 2014 at 7:29 AM, Fabian Mandelbaum >> &g
ation is parameterized and/or overridable.
>>
>>
>> On Thu, Jan 2, 2014 at 7:29 AM, Fabian Mandelbaum
>> wrote:
>>
>>> Hello there,
>>>
>>> our Restlet-based application needs to have users authenticated using
>>> both cookies
wrote:
>
>> Hello there,
>>
>> our Restlet-based application needs to have users authenticated using
>> both cookies and http basic (hopefully to be switched to digest soon)
>> authentication (Actually it's either cookies or http auth, but see below
>>
and/or overridable.
On Thu, Jan 2, 2014 at 7:29 AM, Fabian Mandelbaum wrote:
> Hello there,
>
> our Restlet-based application needs to have users authenticated using both
> cookies and http basic (hopefully to be switched to digest soon)
> authentication (Actually it's either coo
Hello there,
our Restlet-based application needs to have users authenticated using both
cookies and http basic (hopefully to be switched to digest soon)
authentication (Actually it's either cookies or http auth, but see below
for auth flow). We also use our own verifier storing credentials o
Hi Umoh,
We have a doc gap on this front that we intend to fill for RF 2.2 release.
Meanwhile, I suggest that you look at the GitHub related tickets for info
on the latest activity on the OAuth extension:
https://github.com/restlet/restlet-framework-java/issues/search?q=oauth
Thanks,
Jerome
20
Hi,
I'm new to Restlet and i'm trying to figure out how to setup OAuth 2. So far I
haven't been able to find any documentation to assist me. Can anyone point me
to any relevant documentation, or pointers on how I can do this in Restlet.
thanks
-
Hi.
I'm have some concerns while designing the authentication part of my
API build with Restlet 2.1.
I'd like your opinion on what I've already done and I'm here to ask
some advice for some more stuff.
My needs are:
1. I want to identify applications users by cookie, to
Hello Sultan,
unfortunately, each request must provide authentication/authorization data
as stated by the stateless constraint:
communication must be stateless in nature, as in the
client-stateless-server (CSS) style of Section
3.4.3<http://www.ics.uci.edu/%7Efielding/pubs/dissertat
to authenticate every time when move between activities
I use DigestAuthenticator.
--
View this message in context:
http://restlet-discuss.1400322.n2.nabble.com/Save-authentication-data-in-Android-between-acivities-tp7523306.html
Sent from the Restlet Discuss mailing list archiv
At least it used to be the case that you could only use the Apache Client
connector for https on Android. So for the 2.0.X version I would try that one
first.
cheers,
m
--
http://restlet.tigris.org/ds/viewMessage.do?dsForumId=4447&dsMessageId=
I'm trying to figure out how to set up cookie authentication, but couldn't find
any information (other than hints that this is supported by Restlet 2.1RC1).
Nothing in Restlet in Action, either.
http://restlet.tigris.org/issues/show_bug.cgi?id=605
http://wiki.restlet.org/developers/1
Hello,
I am writing a restlet client to get data from a web service which uses form
based authentication with self-signed certificate. Basic authentication is
easy but I did a lot of web searches (including this list archive) and could
not find info on how restlet client does form based
Exception {
Server server = new Server(Protocol.HTTP, 8182);
// Guard the restlet with BASIC authentication.
ChallengeAuthenticator guard = new ChallengeAuthenticator(null,
ChallengeScheme.HTTP_BASIC, "testRealm");
// Instantiates a Verifier of identifier/secret couples based o
Hello,
This is a rather simple question about authentication from the server-side
point of view. It's been awhile since I've used Restlet, so it may be
something that would have been obvious before.
I've been reading through some info about it at
http://wiki.restlet.org/docs_2.
The reason System.setproperty worked is because I believe that this is used
as the default if the parameters are not set.
just my 2 cents, I may be wrong :)
--
Sean
--
View this message in context:
http://restlet-discuss.1400322.n2.nabble.com/Client-Authentication-SSL-using-Jetty-tp7031323p7046562.html
Sen
On 28/11/2011 12:16, David C wrote:
> Hi
>
> As it turned out. The problem was that setting the trust information lies
> outside the restlet framework. Adding these two lines solved the user
> authenticaiton problem using SSL for me.
>
> System.setProperty("javax.net.ssl.trustStore", key
Hi
As it turned out. The problem was that setting the trust information lies
outside the restlet framework. Adding these two lines solved the user
authenticaiton problem using SSL for me.
System.setProperty("javax.net.ssl.trustStore", keystorepath);
System.setProperty("javax.ne
path);
parameters.add("trustPassword", keystorepassword);
parameters.add("needClientAuthentication",needclientauthentication); //Turn
this on for client authentication
Hope to help.
Jim
> Hi
>
> I've been stuck on setting up using Client Authenticatio
Hi
I've been stuck on setting up using Client Authentication using SSL with Jetty
Server. I've setup my server based on these codes
component = new Component();
Server server = component.getServers().add(Protocol.HTTPS, 8112);
Series
authentication with multiple routes
Hello Steve,
I send you an idea of what could be a solution for your problem. It is based
on a filter, placed just after the ClientResource that will handle the
unauthorized response and complete the round trip.
**
ClientResource cr = new ClientResource
Hi
In my scenario I am using a ChallengeAuthenticator with a special Verifier that
checks username and password of a HTTP Basic Authentication with an external
Java application:
final ChallengeAuthenticator guard = new
ChallengeAuthenticator(null,ChallengeScheme.HTTP_BASIC,REALM
);
>router.attach(Test2Resource.URI, Test2ResourceImpl.class);
>
>return router;
>}
>};
>
> With a single DIGEST authentication round trip on the client. At the moment
> I need to do this:
>
>ClientResource au
Hello setenv,
that's the right way. I've updated the javadocs in order to precise the crucial
role of the "wrap" method.
Best regards,
Thierry Boileau
--
http://restlet.tigris.org/ds/viewMessage.do?dsForumId=4447&dsMessageId=2815681
ource =
ClientResource.create("http://"+host+":"+port+"/device/technology/"+technology,
DevTechnologyResource.class);
output.append(testTechnologyResource.getXML().getText());
rewritten to handle basic http authentication becomes:
ClientResource testclientTechnologyRe
IGEST authentication round trip on the client. At the moment I
need to do this:
ClientResource authResource = new
ClientResource("http://localhost:8182/foo"; + TestResource.URI);
TestResource myTest = authResource.wrap(TestResource.class);
authResource.setCh
Dear list,
I built a REST interface for a domotics framework with restlet 2.0.7.
I need to pragmatically test every method with authentication and i am
experiencing a problem with annotated resource methods.
In the test class, when I use ClientResource this way:
ClientResource
Hello Nathan,
I will present some code about an Application that hosts a set of resources,
but this will apply also for a Component.
Assuming there is an Application that declares a route called "/test1" to
resource:
@Override
public Restlet createInboundRoot() {
Router router = ne
We have a set up where the container manages the security. The resources
that are protected by the container use the user's principal that is stored
in the ClientInfo. My problem is that I don't know how to mock/set this in
the client info for unit testing of our restlet resources. Can this be
d
sed authentication...
>
>
> http://wiki.restlet.org/docs_2.0/13-restlet/27-restlet/46-restlet/112-restlet.html
>
> I am looking for a guide to setting up Client PKI Cert-based authentication
> in Restlet 2.0
>
> Can anyone poin
This page talks about setting up Basic and Digest based authentication...
http://wiki.restlet.org/docs_2.0/13-restlet/27-restlet/46-restlet/112-restlet.html
I am looking for a guide to setting up Client PKI Cert-based authentication in
Restlet 2.0
Can anyone point me in the right direction
Hi,
we implemented a Restlet Application to access to some files using HTTPS
with the Basic Authentication.
The application worked
perfectly: when the user clicks on the link to the file, username and
password were requested and the file download began and
it still works properly if we try to
Name(), -1),
new NTCredentials("rchoppal", "",
target.getHostName(),
"na.convergys.com"));
After this, I tried using kerberos keytab based implementation with correct
login.conf & krb5.conf fil
/364-restlet.html
>
> Best regards,
> Thierry Boileau
>
> Hi,
> > Really appreciate any help/direction. Thank you!
> >
> > I'm trying to use the NTLM authentication to make a call to the Odata
> > webservice. It works fine on local because my loca
Hello Ravi,
I've you had a look here?
http://wiki.restlet.org/docs_2.0/13-restlet/364-restlet.html
Best regards,
Thierry Boileau
Hi,
> Really appreciate any help/direction. Thank you!
>
> I'm trying to use the NTLM authentication to make a call to the Odata
> webserv
Hi,
Really appreciate any help/direction. Thank you!
I'm trying to use the NTLM authentication to make a call to the Odata
webservice. It works fine on local because my local windows credentials are
probably used, and my userid is authenticated with the Dynamics CRM server as
I've
Hi
I think the problem was due to an old example when trying to build
ChallengeResponse object. I've followed the example in:
http://wiki.restlet.org/docs_2.0/13-restlet/27-restlet/46-restlet/112-restlet.html
and is working fine now.
KR,
--
Hi,
I'm trying to implement a simple example with Digest authentication. I've
rewieved the tutorial and nearly translated it to my example.
The problem is that when getting the Unauthorized response (after the first
request for the secured resource), the ChallengeRequest objec
// Not authenticated
> .
>}
>
> This is correct?
> Best regards.
> Esteban
> --
> View this message in context:
> http://restlet-discuss.1400322.n2.nabble.com/Optional-authentication-and-ClientInfo-getAuthenticated-tp5381324p5469730.html
&g
rg
Noelios Technologies ~ http://www.noelios.com
-Message d'origine-
De : webp...@tigris.org [mailto:webp...@tigris.org]
Envoyé : dimanche 27 juin 2010 14:21
À : discuss@restlet.tigris.org
Objet : GAE + restlet 2 + custom authentication = possible?
Hi,
Would it be possible to d
context:
http://restlet-discuss.1400322.n2.nabble.com/Optional-authentication-and-ClientInfo-getAuthenticated-tp5381324p5469730.html
Sent from the Restlet Discuss mailing list archive at Nabble.com.
--
http://restlet.tigris.org/ds/viewMessage.do
Hello Bruno, Esteban,
thanks for your report, I agree too, and have updated the svn repository.
Bets regards,
Thierry Boileau
--
http://restlet.tigris.org/ds/viewMessage.do?dsForumId=4447&dsMessageId=2652060
Hi all, I agree with Bruno.
If I use the optional parameter in true, how determine whether a client is
authenticated or not in a resource?
This line with optional parameter is always true, even if the request has no
authentication.
request.getClientInfo().isAuthenticated()
best regards
Hi all,
Perhaps something that I should have noticed earlier...
Currently, an optional authenticator sets the ClientInfo to be
authenticated whether or not the authentication was successful or took
place. This is due to beforeHandle and authenticated:
@Override
protected int
Hello bruno and thierry,
I've tried using your exemple and the current svn code and it works fine!
Thanks a lot.
Best Regards
Laurent Garrigues
--
http://restlet.tigris.org/ds/viewMessage.do?dsForumId=4447&dsMessageId=2638258
Hello bruno and thierry,
I've tried using your exemple and the current svn code and it works fine!
Thanks a lot.
Best Regards
Laurent Garrigues
--
http://restlet.tigris.org/ds/viewMessage.do?dsForumId=4447&dsMessageId=2638261
hello Thierry,
Thanks for your response. I've browsed your exemple, but I can't seem to find
any reference to https.
"
public static void main(String[] args) throws Exception {
Component c = new Component();
c.getServers().add(Protocol.HTTP, 8182);
c.getDefaultHost().a
Hello bruno,
I've been following your advice, now the "port already in use" error no longer
appears, I've also deleted the line adding the SSLContextFactory but I still
can't reach the ressource with the browser (authentication error).
Here is the output when I s
Hi there,
This might be something to consider for the TunnelService, to simulate a
HTTP Basic authentication with additional URI information.
Are you sure your HTTP client can't do proper HTTP Basic authentication?
Best regards,
Jerome Louvel
--
Restlet ~ Founder and Technical Lead ~
On 28/06/10 14:36, Laurent Garrigues wrote:
> Hi Bruno, thanks for your answer
>
> I have no idea if it's a basic/digest authentication or a SSL/certificate.
> When I use the browser, it does not open the login pop-up.
>
> If I remove "jettyServer.start();" it wo
Hi Bruno, thanks for your answer
I have no idea if it's a basic/digest authentication or a SSL/certificate.
When I use the browser, it does not open the login pop-up.
If I remove "jettyServer.start();" it works fine, but not in jetty:
"2
Hi,
Would it be possible to do the following?
https://docs.google.com/drawings/edit?id=1uB0hO9XN3ju7Z_qWYSDVcm6yVIAfD-OIb_ZrpzhK2Lk&hl=en
Would Spring Security or JAAS be involved?
Are there any code samples or tips on doing this, besides
http://wiki.restlet.org/docs_2.0/13-restlet/27-restlet/
On 23/06/2010 17:42, webp...@tigris.org wrote:
> Thanks the reply.
>
> My plan is first step client calls server by http GET, second step
> server response in 401 with WWW-Authentication: PPPK realm="***",
> nonce="***", opaque="***", keyid="***&q
Thanks the reply.
My plan is first step client calls server by http GET, second step server
response in 401 with WWW-Authentication: PPPK realm="***", nonce="***",
opaque="***", keyid="***", version="***". In the end, client will response
Hello,
here is the url of the user guide regarding BASIC and DIGEST authentication:
http://wiki.restlet.org/docs_1.1/13-restlet/112-restlet.html
You will find a sample code and some explanations.
Regarding your needs, this implementation does not handle the opaque parameter,
and generates a
Hi,
I want to implement a HTTP_DIGEST Authentication in server side. The header
would be like:
WWW-Authentication: Digest realm="myrealm", nonce="***", opaque="***"
I presume that I can put the realm in header by calling new ChallengeRequest(
ChallengeScheme.H
Hello,
you need to develop another piece of code: a subclass of AuthenticationHelper.
I've just added a document in the user guid, at this URL:
http://wiki.restlet.org/docs_2.0/13-restlet/366-restlet.html
Best regards,
Thierry Boileau
--
http:
Hello,
you can try to get the userinfo of the resource's reference, see
Reference#getUserInfo, but I'm not very confident. Are you sure this data is
transmitted in the HTTP request?
best regards,
THierry Boileau
--
http://restlet.tigris.org/d
Hello,
Can I ask a newbie question: How to custom WWW-Authentication?
for example, I hope the server response header could consist of:
WWW-Authentication: PPPK realm=”u...@my.com”
I did the following code, but WWW-Authentication didn't display u...@my.com,
just a question
Thanks for your response.
I don't have much of a choice, the particular client that needs to access the
resource authenticates in this way. It is not a web browser though, it is
another web service so no links will be shared. I also understand that this
part of the url is encrypted via SSL co
Hi Laurent,
On 16/06/10 16:49, Laurent Garrigues wrote:
> Hello,
>
> I have an autentification error when I try to reach the URI on my browser
> (Firefox).
What kind of authentication error do you get, SSL/certificate or
basic/digest authentication?
If it's just basic/digest a
is often considered bad practice, because there's a risk of
sending the username and password when you share the link.)
If you use the username and password in the browser, it's normally the
browser that handles it and uses it for basic authentication. This
information is still
Hello,
I have an autentification error when I try to reach the URI on my browser
(Firefox).
When I try to reach this URI from a java client, it works perfectly.
I use Jetty for solving the CPU problem on my server.
I don't understand why it works if I use the java client and not if I use the
bro
I've been using the "ChallengeResponse" mechanism to authenticate users so far.
ChallengeResponse challengeResponse = getRequest().getChallengeResponse();
if( challengeResponse == null ){
throw new RuntimeException("not authenticated");
}
String login = challengeResponse.getIdentifier();
Stri
ng forward for Restlet 2.0 and the Restlet in Action book.
Thanks for all of your work!
--
View this message in context:
http://restlet-discuss.1400322.n2.nabble.com/Cookie-authentication-tp4963859p5079367.html
Sent from the Restlet Discuss mailing list archive at
Hi there,
Are you able to use Restlet 2.0 instead? There is a new security package
that will make it easier for you to do such things.
See a related issue for cookie authentication:
"Support cookie based authentication"
http://restlet.tigris.org/issues/show_bug.cgi?id=605
Best regar
d the ChallengeResponse to the request
parameter. I guess this will break with anything but basic
authentication, but it works for me at the moment.
Best regards,
Stefan
On Sat, May 8, 2010 at 8:18 PM, Thierry Boileau
wrote:
> I think you can override the Application#createOutboundRoot method in ord
Hello Stefan,
I think you can override the Application#createOutboundRoot method in order to
provide for example your own Filter that updates the Request (according to the
request's URI) with the right ChallengeResponse, and sets its "next" property
with the context client dispatcher:
getCont
Hi everyone,
I am using the Redirector-class to proxy client requests (let's call it "client
A") from server A to server B (i.e. MODE_SERVER_OUTBOUND):
client A <=> server A <=> server B
Now I want to guard access to the resources of server B with (digest)
aut
Hi,
i have a problem setting the challengescheme in the guard.
I've created a guard that decides authentication based on the cookie sent.
But when i use the following line:
MyGuard mGuard = new MyGuard (getContext(),ChallengeScheme.CUSTOM,
"Tradefields API Login");
In runtime i
g
Objet : Re: Comprehensive example of authentication in RESTLet 2.0?
Hello,
Thanks Garry for your mail.
Just a few words about the security model in the Restlet framework.
The Restlet framework has set up its own model (see here [0], [1]) based on
some properties of the ClientInfo class: user and roles
automatic negotiation:
"Support preemptive authentication"
http://restlet.tigris.org/issues/show_bug.cgi?id=288
Best regards,
Jerome
2010/2/2 JY Cronier
> Hi all,
>
> Is it possible to implement a kind of "authentication negotiation".
> This means that the ser
Hi all,
Is it possible to implement a kind of "authentication negotiation".
This means that the server might return to the client a list of possible
authentication methods (multiple values for the WWW-Authenticate headers?) with
HTTP code 401
The HTTP client choose the best method t
ues of the ChallengeResponse
object that my AuthenticationHelper populates (see below) to make coarse
authentication decisions. The next objects in my routes are then
different subclasses of org.restlet.security.Authorizer that have an
authorize method analogous to the authenticate method in the
Aut
Hello,
I'm trying to integrate authentication into my RESTLets however I'm having
trouble understanding the authentication scheme that Restlet implements. It
seems that most of the examples use the "Guard" class... however this is now
deprecated... It seems that Challenge
Hi,
THanks for response, but I actually figured this out. The reason for not
working was my appcontext.xml settings overlapping with the code above, so I
had to do the wiring in one place.
--
http://restlet.tigris.org/ds/viewMessage.do?dsForum
TTP Basic Authentication and Spring for the
> Restlet 2.0 M6.
>
> Spring appcontext.xml configures SpringComponent with ssl settings and
> defaultTarget with routers. This works fine.
>
> main() method:
> Component component = ((Component) ctx.getBean("top"));
> com
Hi,
I am trying to integrate HTTP Basic Authentication and Spring for the Restlet
2.0 M6.
Spring appcontext.xml configures SpringComponent with ssl settings and
defaultTarget with routers. This works fine.
main() method:
Component component = ((Component) ctx.getBean("top"));
compo
I got a reply. So i have tried with IP Address for test.com and replaced
test.com with IP Address and tried. At this time i got GATEWAY_TIMEOUT error.
error message:
-
Jan 5, 2010 4:56:32 AM com.noelios.restlet.ext.net.HttpClientHelper start
INFO: Starting the HTTP client
504 Gatewa
c void main(String [] args) throws IOException {
> String uri =
> "http://test.com/cs/api/forums.ashx/forums/5/threads/3/posts/3"; ;
> ClientResource resource = new ClientResource(uri);
> ChallengeScheme scheme = ChallengeScheme.HTT
(String [] args) throws IOException {
String uri =
"http://test.com/cs/api/forums.ashx/forums/5/threads/3/posts/3"; ;
ClientResource resource = new ClientResource(uri);
ChallengeScheme scheme = ChallengeScheme.HTTP_BASIC;
ChallengeResponse authentication = new Challen
.org
Objet : Re: CAS authentication in Restlet server
Hi Jerome,
Thanks for the pointer, it was very useful. I think I'm starting to see
the picture now. I'm a bit confused about the various places where a
Verifier is referenced. I've seen such references in Context,
ChallengeAuthenti
Hello Nirav and Thierry,
Thanks for your feedback.
I think my biggest problem is understanding the API and how it should be used.
Right now, i've managed to register my authentication helper and the class is
being instantiated and i can see the 'formatRawRequest' method bein
Ok, I seem to have solved my problem... ^_^
I needed to provide a custom verifier to the Authenticator. I understand the
need to decouple the verifier from the helper, but it would have been nice if
the 'plugin helper' could have specified what verifier to use by default for
the authenticator t
Hi KD,
The Restlet Security schema is highly extensible and very adaptive. Kudos to
the team. You can easily write your own authentication scheme.
We have a 'Component' which has several 'Applications' in it. We needed custom
authentication and authorization for one of thes
n the server.
>
> Looking for i.e.
> Example of a custom authentication scheme and relevant classes. How does one
> register the scheme so restlet can find it at startup.
>
> Using the scheme in the org.restlet.Application via a call to a Guard.
>
> Thanks,
> --KD
>
this? Right now i'm just
looking at passing in a custom request header from the client and validating
this on the server.
Looking for i.e.
Example of a custom authentication scheme and relevant classes. How does one
register the scheme so restlet can find it at startup.
Usi
Hi Niclas,
>Some short-circuit occurring. Possibly mixing it up with some previous
version.
sure, there have been updates in the last days.
>Thanks a lot for your patience... Tiring day for me...
you're welcome! :)
Best regards,
Thierry Boileau
> Again, if I read a bit more careful...
>
> T
On Tue, Dec 22, 2009 at 3:47 PM, Thierry Boileau
wrote:
> Hi Niclas,
>
> > * ext.json depends on Google's Json classes, and I think that
> therefore the module should inherit the Google one.
> Isn't that the case? Do you think about the JSON.gwt.xml file that looks
> like:
>
>
>
>
Some
Again, if I read a bit more careful...
The "Request" contains the "ChallengeReponse"
Got it!!!
Thanks a lot for your patience... Tiring day for me...
Niclas
On Tue, Dec 22, 2009 at 5:33 PM, Niclas Hedhman wrote:
> On Tue, Dec 22, 2009 at 3:47 PM, Thierry Boileau
> wrote:
>> Hi Niclas,
>>
Hi Niclas,
> * ext.json depends on Google's Json classes, and I think that
therefore the module should inherit the Google one.
Isn't that the case? Do you think about the JSON.gwt.xml file that looks
like:
>Secondly, I presume that clientResource.getChallengeRequest() after
cons
Ok,
Since I use JSON, and the ext.json was missing the GWT module
definition, I kind of 'forced' ;-) into SNAPSHOT after all.
So, first spontaneous observation;
* ext.json depends on Google's Json classes, and I think that
therefor the module should inherit the Google one.
Secondly, I presume
On Mon, Dec 21, 2009 at 10:48 PM, Thierry Boileau
wrote:
> Hello Niclas,
>
> the API of Restlet 2.0 has been moving, as usual, and it is now
> stabilized a few points needs to be addressed). The future 2.0 RC
> (Release Candidate) is planned for january 2010, which means that the
> API will be def
not present in the GWT Module/jar of 2.0-M5, and
> elsewhere I read of the "new Client( protocol )" usage, where I can't
> figure out how to tailor authentication and headers.
>
> First step; Which of the two is the correct one?
>
> Step 2; If it is "Client&quo
Hi,
I am confused over the client pattern to use.
On one hand, I find documentation/mails that speaks of ClientResource,
which IIUIC is not present in the GWT Module/jar of 2.0-M5, and
elsewhere I read of the "new Client( protocol )" usage, where I can't
figure out how to tailor
le to authenticate a request via the RIAP protocol? One of
>> my application is guarded by BASIC authentication, and I'd like to use
>> it from another restlet application. Both application are in the same
>> component in servlet environment.
>>
&
Hi Zsolt,
I send you a sample application that illustrates the scenario.
Best regards,
Thierry Boileau
> Hello
>
> Is it possible to authenticate a request via the RIAP protocol? One of
> my application is guarded by BASIC authentication, and I'd like to use
> it
clear.
>>
>> If I understand you correctly, you are suggesting to use a CAS proxy
>> ticket as an authentication token. However, such a token can only be
>> sent once to a CAS server for verification. This very much looks
>> like a
>> problem for (preemptive) au
1 - 100 of 321 matches
Mail list logo
