[
https://issues.apache.org/jira/browse/SHINDIG-463?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=12615393#action_12615393
]
Paul Lindner commented on SHINDIG-463:
--------------------------------------
Every handler should check the token to see if it's anonymous.
If a handler does not check the token then an InvalidArgumentException is
thrown instead of an NPE.
Also, do you like code that looks like this:
if (token.isAnonymous()) {
...
}
or this:
if (token == null) {
...
}
> Support Anonymous Security Tokens
> ---------------------------------
>
> Key: SHINDIG-463
> URL: https://issues.apache.org/jira/browse/SHINDIG-463
> Project: Shindig
> Issue Type: Improvement
> Components: Common Components (Java)
> Reporter: Paul Lindner
> Assignee: Paul Lindner
> Attachments: anontoken.patch
>
>
> To support anonymous access for viewer/owner we need to support the concept
> of an anonymous security token.
> To do this we should create an isAnonymous() method in the SecurityToken
> interface and add a new implementation AnonymousSecurityToken.
> These tokens will throw InvalidArgumentException() when an attempt is made to
> access any field.
--
This message is automatically generated by JIRA.
-
You can reply to this email to add a comment to the issue online.
