I’m not sure if this will be of interest or not, but the Apache Aries JAX-RS whiteboard has created an integration for Apache Shiro (both authentication and authorisation) that can be used with the OSGi R7 JAX-RS whiteboard specification. See https://github.com/apache/aries-jax-rs-whiteboard/tree/master/integrations/shiro <https://github.com/apache/aries-jax-rs-whiteboard/tree/master/integrations/shiro> for details. This may be of use to you in your use case.
Best Regards, Tim > On 3 Aug 2018, at 05:27, Francois Papon <[email protected]> wrote: > > Ok, my bad, I read your previous message to fast ;) > > Thanks for your feedback, > > François Papon > [email protected] > > Le 03/08/2018 à 00:30, Paul Spencer a écrit : >> François, >> I am not sure what you mean by "Can you try with the Karaf default realm ?" >> >> - If the property realmName is not defined and contextName is defined, then >> authentication is done against the Karaf JAAS Realm defined by contextName. >> Authorization failures do not include a realm in the response header >> "WWW-Authenticate: Basic " >> >> - If the property realmName is defined and contextName is defined, then >> authentication is done against the Karaf JAAS Realm defined by contextName. >> Authorization failures will include a the realm in the response header >> "WWW-Authenticate: Basic realm=" followed by the value of the property >> realmName. >> >> - When the property contextName is undefined, authentication failed and the >> following is logged at DEBUG. >> 16:17:34.514 DEBUG [qtp233378871-3306] Authentication failed: No >> LoginModules configured for >> javax.security.auth.login.LoginException: No LoginModules configured for >> at javax.security.auth.login.LoginContext.init(LoginContext.java:264) >> ~[?:?] >> at javax.security.auth.login.LoginContext.<init>(LoginContext.java:512) >> ~[?:?] >> at >> org.apache.cxf.interceptor.security.JAASLoginInterceptor.handleMessage(JAASLoginInterceptor.java:140) >> [95:org.apache.cxf.cxf-core:3.2.5] >> >> - When the property contextName is set to "karaf", authentication works with >> the default karaf JAAS realm. I used the username of "karaf" with the >> password of "karaf" to successfully connect. A bad password failed as one >> would expect. >> >> Does this answer your question? >> Paul Spencer >> >> >> >> >> -- >> Sent from: http://karaf.922171.n3.nabble.com/Karaf-User-f930749.html >
