Richard, Thank you. It works for Firefox but does not for Internet Explorer because it does not support credentials in URL: http://support.microsoft.com/kb/834489
I decided to turn OFF Fedora’s requirement for authentication on API-A requests. I was wondering why Fedora Web Administrator does not remember my authentication within one session. I opened “public” object and tried to edit datastream (API-M request). Fedora Web Administrator asked for credentials and I authenticated as fedoraAdmin. In the same session I tried to open another object that has a POLICY stream limiting API-A requests for some users and allowing for fedoraAdmin. Fedora Web Administrator does not see me as fedoraAdmin even I just authenticated as such (to edit other object) and does not ask for my credentials (because I turned off requirement for authentication on API-A requests). So, as fedoraAdmin I cannot even read objects with that POLICY stream. Thank you, On Sat, Jun 30, 2012 at 2:05 AM, Rich d'Rich <rich.d.r...@gmail.com> wrote: > Hi Serhiy, > > Fairly sure Fedora (running on Tomcat/JAAS) is happy taking a URL of the > form: > http://username:password@host/fedora/... > > Bear in mind that some browsers and clients remove this for 'security', > though. > > Cheers, > Richard > > On 30 June 2012 08:29, Serhiy Polyakov <sp0...@gmail.com> wrote: >> >> How to force Fedora Web Administrator to ask a user for authentication >> right after Web Administrator has started or on API-A use? It can be >> done via setting: “Require user authentication for Fedora’s access >> (API-A) interface” in Fedora’s web.xml but I wanted to keep this >> parameter “not require”. So I am looking how to modify Web >> Administrator or may be run it with a parameter in URL? >> >> If above is not possible I will turn API-A auth ON. I will need to >> give access to the “public” objects linked on my web page. Links look >> like: >> http://my.host.org:8080/fedora/objects/id:30/datastreams/OBJ/content >> With API-A auth set to ON in Fedora web browser will ask for >> authentication that may be anonymous/anonymous in may case. How to >> supply username and password with the URL like this (open is fine) so >> that public could download the objects? >> >> Thank you, >> Serhiy >> >> >> ------------------------------------------------------------------------------ >> Live Security Virtual Conference >> Exclusive live event will cover all the ways today's security and >> threat landscape has changed and how IT managers can respond. Discussions >> will include endpoint security, mobile security and the latest in malware >> threats. http://www.accelacomm.com/jaw/sfrnl04242012/114/50122263/ >> _______________________________________________ >> Fedora-commons-users mailing list >> Fedora-commons-users@lists.sourceforge.net >> https://lists.sourceforge.net/lists/listinfo/fedora-commons-users > > > > ------------------------------------------------------------------------------ > Live Security Virtual Conference > Exclusive live event will cover all the ways today's security and > threat landscape has changed and how IT managers can respond. Discussions > will include endpoint security, mobile security and the latest in malware > threats. http://www.accelacomm.com/jaw/sfrnl04242012/114/50122263/ > _______________________________________________ > Fedora-commons-users mailing list > Fedora-commons-users@lists.sourceforge.net > https://lists.sourceforge.net/lists/listinfo/fedora-commons-users > ------------------------------------------------------------------------------ Live Security Virtual Conference Exclusive live event will cover all the ways today's security and threat landscape has changed and how IT managers can respond. Discussions will include endpoint security, mobile security and the latest in malware threats. http://www.accelacomm.com/jaw/sfrnl04242012/114/50122263/ _______________________________________________ Fedora-commons-users mailing list Fedora-commons-users@lists.sourceforge.net https://lists.sourceforge.net/lists/listinfo/fedora-commons-users
