I've decided to create a login panel to allow the user to login first,
but I've run into a snag. We're using acegi as our security layer,
and it intercepts all requests checking for state.
I thought that I could just call the j_acegi_security_check.jsp
directly supplying it with user and password, but it returns the
acegilogin.jsp page. I noticed that my initial request to the
j_acegi_security_check.jsp page had no jsessionid associated with it,
so I thought that was the problem. To test that idea I created
another HTTPSession request that gets spit out upon
applicationComplete to a bogus page on the server. Now my AIR session
seems to have the JSESSIONID cookie set because when I send the real
'logon' request, I see the same JSESSIONID in the header.
Unfortunately, this didn't work either because I still get the
acegilogin.jsp page returned to me.
The only real difference I see between the web and AIR requests is
that the 'Referer' is different in the header. From AIR, the referer
is app:/AirMain.swf, from the web version of our app it's
acegilogin.jsp;jsessionid=098CEB40890309539C7E50EF410B54DE.
Does anyone have experience integrating AIR and acegi?
--- In flexcoders@yahoogroups.com, Kevin Aebig [EMAIL PROTECTED] wrote:
Isn't this a perfect usage of the EncryptedStore feature? Why not
save the
login credentials when the person first logs in, than save them via the
EncryptedStore for the remaining usage.
!k
_
From: flexcoders@yahoogroups.com [mailto:[EMAIL PROTECTED] On
Behalf Of Geoffrey
Sent: Wednesday, May 14, 2008 3:11 PM
To: flexcoders@yahoogroups.com
Subject: [flexcoders] Can AIR app get Workstation Credentials?
Our flex app requires a login(HTML page) before launching the main
app(the SWF does not handle the logging in).
Converting to an AIR app and I was wondering if I could get the logged
in user's credentials from the workstation so we don't require a login
screen.