DOSGi seems to publish JAX-RS endpoints using a null HttpContext, which means that the HttpService will create a default context. This makes it hard to add pluggable authentication handlers using httpContext.handleSecurity(). Does anyone have suggestions for hooking into the request before it's sent to the JAX-RS resource methods? I'd prefer to bind to the OSGI APIs rather than to CXF, and it seems like the httpContext should be a good way of doing that.
If there isn't a convenient plact to hook in, I suppose I'll have to provide a custom HttpService that overrides HttpService.createDefaultHttpContext(). Thanks, Josh
