Hi, could you get a bit more in detail, how to implement the auth - e.g. where to store the authcode? Do i have to create a session on my own...?
I already went through a couple of projects dealing with spring security / acegi. Thanks !!! On 10.11.2010, at 17:57, Jack wrote: > Everytime a request is made the RequestFactoryServlet loads an > implementation of UserInformation and calls boolean isUserLoggedIn(). > If you do not provide a custom UserInformation implementation a > SimpleUserInformationImpl will be choosen which always returns true > for isUserLoggedIn(). > > To define a custom UserInformation implementation you need to add to > your web.xml something like this: > > <servlet> > <servlet-name>requestFactoryServlet</servlet-name> > <servlet- > class>com.google.gwt.requestfactory.server.RequestFactoryServlet</ > servlet-class> > <init-param> > <param-name>userInfoClass</param-name> > <param-value>your.example.YourUserInformationImpl</param-value> > </init-param> > </servlet> > > With your own UserInformation implementation you can check if an user > is logged in. Inside the isUserLoggedIn() method you can access the > HttpServletRequest object via > > HttpServletRequest request = > RequestFactoryServlet.getThreadLocalRequest(); > > Now you should have anything you need to authenticate the request > (request cookies, request headers, request session). > > To do the actual login and logout of an user I would use a normal GWT > RemoteService with two methods > > String login(String user, String password) > void logout(String authtoken) > > > > On 9 Nov., 20:16, "Max E." <[email protected]> wrote: >> Hello, >> >> I'm having problems to understand how User Authentication works with >> the RequestFactory. >> I do understand the documentation and the expenses example. >> >> How is it possible to implement Authentication/ How do users login? >> How can Users only view the Entities they are allowed to see. >> How can the Server verify that they can only change/persist entities >> they are allowed to change? >> >> I did not find any tutorial or documentation about this. The only >> thing I found was UserInformation and RequestSecurityProvider in GWT. >> >> Can somebody explain this? > > -- > You received this message because you are subscribed to the Google Groups > "Google Web Toolkit" group. > To post to this group, send email to [email protected]. > To unsubscribe from this group, send email to > [email protected]. > For more options, visit this group at > http://groups.google.com/group/google-web-toolkit?hl=en. > -- You received this message because you are subscribed to the Google Groups "Google Web Toolkit" group. To post to this group, send email to [email protected]. To unsubscribe from this group, send email to [email protected]. For more options, visit this group at http://groups.google.com/group/google-web-toolkit?hl=en.
