I guess it's for OAuth2. I'm using apache OAuth2 module and AJP in
Tomcat.
That's just great to externalize authentication out of the
application, it works well, avoid bad design by nature ... but :
- OAuth2 is mostly defined for an application authentication while in
JEE the authentication
Am 6. Juli 2020 14:14:59 MESZ schrieb Mark Thomas :
>On 04/07/2020 19:54, Thomas Meyer wrote:
>> Hi,
>>
>> a while ago I did write a little POC of how to add a custom
>> authenticator scheme to tomcat.
>>
>> this is what I did come up with:
>>
On 04/07/2020 19:54, Thomas Meyer wrote:
> Hi,
>
> a while ago I did write a little POC of how to add a custom
> authenticator scheme to tomcat.
>
> this is what I did come up with:
> https://github.com/thomasmey/BearerTokenAuthenticator
>
> It's rather complicated solution!
> Is there an more
