The only other thing I wanted to add, Option B might be a better choice. ( as it does the same as A, plus unbinds your server and any other custom security handling code.
On Wed, Dec 2, 2009 at 4:39 PM, lev <[email protected]> wrote: > > I think your response A) will give me something to start with. > > I will try to explain again, We have many applications but we want one > place > for authentication(Shiro server). > > Each application that will need authetication service from shiro service > will make a request to centralised ESB. > > ESB will take this request and make a query to centralised shiro if user is > existing in database anad has password correct. > > so your solution A) seems to be good in thoery that i will write some cutom > module on shiro server that will take requests from ESB (in SOAP,REST or > DWR > what ever) and return to ESB authetication reply, > > Do you want to add something more...remember that each of your response > makes things clear for me so please reply... > > > Brian Demers wrote: > > > > Well, not sure if I understand what your looking for completely, but, if > > you > > have some central authentication server (using Shiro) then you need your > > client to connect to it. So you could either: > > > > A.) write some custom code that its a URL, SOAP, REST, api running on > your > > server and custom handle the results > > > > B.) your application just uses Shiro, and you create a new Realm (and > some > > way to expose this on the server) that handles the transport. > > > > Still, not sure what your goal is though. > > > > > > On Wed, Dec 2, 2009 at 4:12 PM, lev <[email protected]> wrote: > > > >> > >> > >> hey Brian, > >> > >> That is so cheerful to see your reply, it gave me hope, thanks for that. > >> > >> Module that i talked is an integrating point of external application to > >> my > >> authenticating application. > >> > >> flow islike this: > >> > >> 1. User logs in External application and fills credntials. > >> 2. Exernal application comes to ESB or some API gateway. > >> 3. API gateway makes a request to Shiro server. > >> 4. Shrio server sends response back(Authenticaed or not authenticated). > >> > >> can you please write more about your idea about how can we get this > >> scenrio > >> implemented. > >> > >> it is very very important for us for tomorrow please. > >> > >> Thanks, > >> > >> > >> Brian Demers wrote: > >> > > >> > You could create a realm, that connects to a central Shiro server. > >> > > >> > > >> > > >> > > >> > On Wed, Dec 2, 2009 at 1:01 PM, lev <[email protected]> wrote: > >> > > >> >> > >> >> Lev Hi, > >> >> > >> >> We want to use shiro for authetication in our new huge project, the > >> >> scenerio > >> >> is: > >> >> > >> >> 1. user enters his credentials in remote module, this module asks > >> >> Jsecurity > >> >> server to autheticate this user,Jsecurity returns the session to this > >> >> module. > >> >> > >> >> 2.what should we use to obtain that kind of relation between remote > >> >> module > >> >> and jsecurity server? > >> >> > >> >> please please reply me ASAP, i need to tell this morning, I have 14 > >> hours > >> >> :-)... > >> >> > >> >> Regards, > >> >> Dilraj > >> >> -- > >> >> View this message in context: > >> >> > >> > http://n2.nabble.com/REST-or-remote-client-authentication-very-very-important-tp4101242p4101242.html > >> >> Sent from the Shiro User mailing list archive at Nabble.com. > >> >> > >> > > >> > > >> > >> -- > >> View this message in context: > >> > http://n2.nabble.com/REST-or-remote-client-authentication-very-very-important-tp4101242p4102392.html > >> Sent from the Shiro User mailing list archive at Nabble.com. > >> > > > > > > -- > View this message in context: > http://n2.nabble.com/REST-or-remote-client-authentication-very-very-important-tp4101242p4102555.html > Sent from the Shiro User mailing list archive at Nabble.com. >
