Re: Support both Bearer and JWT tokens

2016-02-22 Thread Rajan1311
Hi Sergey, I think I have understood what you mean, so the JWT has nothing to do with the OAuth flows. In my case though, when a client server needs access to my API, he does so with the access token obtained via the client credentials grant. Each token (default bearer type) has registered

Re: NullPointerException in OAuthRequestFilter

2016-02-22 Thread LaVloZ .
I didn't recieve an anwser mail for my original question so i resent the same question, then i saw your answer in my SO :) And as you said, Jersey is the problem, you have saved us alots of time. Thank you so much :) 2016-02-22 18:35 GMT+01:00 Sergey Beryozkin : > Hi > I

Re: conflicts with the registered path

2016-02-22 Thread Sergey Beryozkin
Not really - can you debug JettyHTTPServerEngine and check if this property is actually recognized at runtime. FYI, I'm only assuming that update I was referring to is relevant, might not be. So start with confirming this property is indeed seen as being set, in

Re: conflicts with the registered path

2016-02-22 Thread ravi473
Thanks for reply . I have added the system property as you suggest but there is no difference .Can you please suggest me if have any other way to get out of the problem. Cheers, ravi -- View this message in context:

Re: NullPointerException in OAuthRequestFilter

2016-02-22 Thread Sergey Beryozkin
Hi I replied to your original question a week or so ago, can you please check it ? Jersey is loaded is there so I think you may need to disable it somehow Thanks, Sergey On 22/02/16 17:24, LaVloZ . wrote: Hello all i have more than one week tryign to figure out the problem, but i didn't

NullPointerException in OAuthRequestFilter

2016-02-22 Thread LaVloZ .
Hello all i have more than one week tryign to figure out the problem, but i didn't find it, googling, stackoverflow ..., but nothing. The problem is that the web services work fine but when i add the jar for OAuth support using Maven i get NullPointerException raised inside OAuthRequestFilter :

Re: conflicts with the registered path

2016-02-22 Thread Sergey Beryozkin
Hi I recall there was some work added to avoid some side-effects related to running multiple CXF Jetty endpoint on the overlapping paths, but then it caused issues for some existing deployments (like yours) so a property "org.apache.cxf.transports.http_jetty.DontCheckUrl" was added. It can

Re: JAX-RS CookieHeaderProvider with httpOnly cookie doesn't work

2016-02-22 Thread Sergey Beryozkin
Hi Can Cookie contain an attribute such as HttpOnly ? I'm not sure. NewCookie has an isHttpOnly method - but not Cookie. How is Set-Cookie processed on the client side ? By a browser or somehow else ? I'm curious how HttpOnly is added to Cookie. I guess if you have a Cookie with

Re: Support both Bearer and JWT tokens

2016-02-22 Thread Sergey Beryozkin
Hi Thanks for experimenting with the JWT authentication filter, but it is not exactly tailored for the use in OAuth2 flows, let me clarify. JWT (claims) is one way to have a given access token represented *internally*. An access token can be a DB pointer to some custom table, or may be an