[jira] [Commented] (QPID-7029) [Java Broker] Add OAuth2 PreemptiveAuthenticator
[ https://issues.apache.org/jira/browse/QPID-7029?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel=15147570#comment-15147570 ] ASF subversion and git services commented on QPID-7029: --- Commit 1730565 from [~k-wall] in branch 'java/branches/6.0.x' [ https://svn.apache.org/r1730565 ] QPID-7028, QPID-7029, QPID-7030, QPID-7031, QPID-7045: [Java Broker/Java Client] Add OAUTH2 authentication support for management and messaging QPID-7055: Improve GroupProvider API svn merge -c 1729215,1729406,1729408,1729412,1729515,1729656,1729657,1729783,1730019,1730025,1730052,1730559 ^/qpid/java/trunk > [Java Broker] Add OAuth2 PreemptiveAuthenticator > > > Key: QPID-7029 > URL: https://issues.apache.org/jira/browse/QPID-7029 > Project: Qpid > Issue Type: New Feature > Components: Java Broker >Reporter: Lorenz Quack > Fix For: qpid-java-6.0.1, qpid-java-6.1 > > > We want to support non-browser use cases like cURL. To play nice with the > OAuth2 AuthenticationProvider (QPID-7028) we need a PreemptiveAuthenticator. > It should look for the auth grant or auth code in the request header and if > present forward it to the OAuth2AuthenticationProvider. -- This message was sent by Atlassian JIRA (v6.3.4#6332) - To unsubscribe, e-mail: dev-unsubscr...@qpid.apache.org For additional commands, e-mail: dev-h...@qpid.apache.org
[jira] [Commented] (QPID-7029) [Java Broker] Add OAuth2 PreemptiveAuthenticator
[ https://issues.apache.org/jira/browse/QPID-7029?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel=15137294#comment-15137294 ] ASF subversion and git services commented on QPID-7029: --- Commit 1729215 from [~k-wall] in branch 'java/trunk' [ https://svn.apache.org/r1729215 ] QPID-7028, QPID-7029, QPID-7030, QPID-7031, QPID-7045: [Java Broker/Java Client] Add OAUTH2 authentication support for management and messaging * Includes integration with Google and CloudFoundry OAuth2 backends > [Java Broker] Add OAuth2 PreemptiveAuthenticator > > > Key: QPID-7029 > URL: https://issues.apache.org/jira/browse/QPID-7029 > Project: Qpid > Issue Type: New Feature > Components: Java Broker >Reporter: Lorenz Quack > > We want to support non-browser use cases like cURL. To play nice with the > OAuth2 AuthenticationProvider (QPID-7028) we need a PreemptiveAuthenticator. > It should look for the auth grant or auth code in the request header and if > present forward it to the OAuth2AuthenticationProvider. -- This message was sent by Atlassian JIRA (v6.3.4#6332) - To unsubscribe, e-mail: dev-unsubscr...@qpid.apache.org For additional commands, e-mail: dev-h...@qpid.apache.org
[jira] [Commented] (QPID-7029) [Java Broker] Add OAuth2 PreemptiveAuthenticator
[ https://issues.apache.org/jira/browse/QPID-7029?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel=15123380#comment-15123380 ] Rob Godfrey commented on QPID-7029: --- See [RFC-6750|https://tools.ietf.org/html/rfc6750] relating to using bearer tokens for authorization (in particular section 2.1). The responsibility of the preemptive authenticator will be at most to check to see if the authentication provider for the port is an OAuth2 provider, then to see if the request header carries a bearer token, and if so to pass that bearer token to the OAuth2 Authentication Provider to attempt authorization. > [Java Broker] Add OAuth2 PreemptiveAuthenticator > > > Key: QPID-7029 > URL: https://issues.apache.org/jira/browse/QPID-7029 > Project: Qpid > Issue Type: New Feature > Components: Java Broker >Reporter: Lorenz Quack > > We want to support non-browser use cases like cURL. To play nice with the > OAuth2 AuthenticationProvider (QPID-7028) we need a PreemptiveAuthenticator. > It should look for the auth grant or auth code in the request header and if > present forward it to the OAuth2AuthenticationProvider. -- This message was sent by Atlassian JIRA (v6.3.4#6332) - To unsubscribe, e-mail: dev-unsubscr...@qpid.apache.org For additional commands, e-mail: dev-h...@qpid.apache.org