This one may be of interest?
https://lists.apache.org/thread/pso52wffvjqvt8myb4qh2wdqropdxslo
I managed to use shiro-jaxrs so that I can now use the annotations
@RequiresUser, @RequiresRoles and @RequiresPermissions directly on the
JAX-RS resource classes
> fpapon :
> Hi,
> Thanks for the issue on Shiro, I will take a look.
This was quick, thanks! :-)
Hi,
Thanks for the issue on Shiro, I will take a look.
regards,
François
On 30/01/2024 19:27, Steinar Bang wrote:
Paul Spencer :
Apologies for misspelling your name.
No worries! :-)
(but since I'm a nit picker I couldn't help myself when I saw it the
second time, sorry about that!)
I
> Paul Spencer :
> Apologies for misspelling your name.
No worries! :-)
(but since I'm a nit picker I couldn't help myself when I saw it the
second time, sorry about that!)
> I have not opened an issue related to the dependencies.
https://github.com/apache/shiro/issues/1300
Steinar,
Apologies for misspelling your name.
I have not opened an issue related to the dependencies.
Paul Spencer
> On Jan 30, 2024, at 11:19 AM, Steinar Bang wrote:
>
>> Paul Spencer :
>
>> Steiner,
>
> (ps last "e" is an "a", "Steinar", approximate pronounciation
> "Stay-nahr"
> Paul Spencer :
> Steiner,
(ps last "e" is an "a", "Steinar", approximate pronounciation
"Stay-nahr" (with the "r" rolling as in Scots or Spanish or Italian)) ;-)
> I installed the feature shiro-core and had to add had to install the
> following bundles.
>
Steiner,
I installed the feature shiro-core and had to add had to install the following
bundles.
mvn:commons-collections/commons-collections/3.2.2
mvn:commons-beanutils/commons-beanutils/1.9.4
mvn:org.apache.shiro/shiro-config-core/1.13.0
Paul Spencer
> On Jan 30, 2024, at 8:48 AM,
FWIW what I do (in all of the examples I listed), is to create a
DS @Component providing a ServletContextHelper service, like so:
https://github.com/steinarb/oldalbum/blob/master/oldalbum.web.security/src/main/java/no/priv/bang/oldalbum/web/security/OldAlbumServletContextHelper.java#L22
Then I
> Paul Spencer :
> Steiner,
> Just a followup:
> - The Shiro 1.13.0 feature is missing required Shiro and Apache commons
> bundles, which may be resolved in 2.0 alpha, as well as the config package is
> split across multiple bundles, described in SHIRO-654 and also resolved in
> 2.0
Ciprian,
This has gotten me closer, as my REST implementation is now able to see the
Principal in requestContext.getSecurityContext().getUserPrincipal() in filters.
The Principal in REST API remains null. An example REST API is
listCustomer(@Context HttpServletRequest servletRequest) and
The way I have done it in the past is to set the security context with a custom
implementation on the authentication success path, such as:
requestContext.setSecurityContext(new
CustomSecurityContext(username));
and have a class implementing the security context, and another the
Steiner,
Just a followup:
- The Shiro 1.13.0 feature is missing required Shiro and Apache commons
bundles, which may be resolved in 2.0 alpha, as well as the config package is
split across multiple bundles, described in SHIRO-654 and also resolved in 2.0
alpha. So despite your examples, I was
Steinar,
This helps!
Paul Spencer
On 2024/01/24 12:38:27 Steinar Bang wrote:
> > Paul Spencer :
>
> > Karaf 4.4.5
> > How do I protect a OSGi JAX-RS whiteboard REST service using Basic
> > Authentication?
>
> Apache Shiro can do basic auth (among other things).
> https://shiro.apache.org
> Paul Spencer :
> Karaf 4.4.5
> How do I protect a OSGi JAX-RS whiteboard REST service using Basic
> Authentication?
Apache Shiro can do basic auth (among other things).
https://shiro.apache.org
This project is a shiro realm with a simple JDBC database and a react.js
frontend to to user
14 matches
Mail list logo