Why not use a filter? Wicket uses them too. I have absolutely no clue how wicketstuff-rome or rss for that matter works but it looks like they are using a regular wicket page. So the question is what do you want? i can think of the following solutions, but there are probably some more i haven't thought of -do the authentication on the fly in your page (you do not need any fancy security framework for this) -put a filter in front of your app that does the validation for the rss feed for you (you do not need any fancy security framework for this) -you can secure the page in the recommended way of your security framework (wicket-auth roles or swarm)
whichever you prefer depends on a couple of things -are you already using a wicket security-framework? or something like acegi? -is it enough for you to authenticate the user or does he need extra permissions to access the feed? -do you prefer keeping everything in wicket or are you ok with servletfilters and stuff? So you see there is no right or wrong direction, all roads lead to rome (pun intended) Let me know what you prefer and we go from there. Maurice On Fri, Feb 15, 2008 at 11:22 AM, Murat Yücel <[EMAIL PROTECTED]> wrote: > Hi Maurice > > Can you point me in the right direction? What I need is the following. > > http://localhost:8080/rssfeed?username=admin&password=12345678 > > The username and password should be validated against the database > and if it is correct the feed should be generated. I can of course do this > with a filter but i guess this is not the wicket way.... > > /Murat > > 2008/2/14, Maurice Marrink <[EMAIL PROTECTED]>: > > > > > > For swarm 1.3.1 i am working on this. It allows you to use the same > > authorization / authentication mechanism as your wicket app. in effect > > the policy files. > > You can try it out by letting your pom get the latest 1.3-SNAPSHOT. > > Some feedback is welcome. > > > > > > Maurice > > > > > > On Thu, Feb 14, 2008 at 5:03 PM, Ryan Sonnek <[EMAIL PROTECTED]> > > wrote: > > > you can mount the wicket rss feed as a "bookmarkable url" and use a > > > filter to ensure security. > > > > > > Not sure if wicket has the concept of "securing application resources" > > > currently built in? > > > > > > > > > > > > On Thu, Feb 14, 2008 at 9:55 AM, Murat Yücel <[EMAIL PROTECTED]> > > wrote: > > > > Hi All > > > > > > > > I have started using the wicketstuff-rome project to generate rss > > feed. > > > > Before this was just done > > > > in a servlet. The servlet would check the parameters submitted. If > > they were > > > > valid then the rss feed > > > > would get generated. > > > > The parameters are username, password. > > > > > > > > Is it possible to add authentification in wicket to the feed? If it > > is how > > > > would you do it? > > > > I have created my feed using this example: wicketstuff-rome-examples > > > > > > > > /Murat > > > > > > > > > > --------------------------------------------------------------------- > > > To unsubscribe, e-mail: [EMAIL PROTECTED] > > > For additional commands, e-mail: [EMAIL PROTECTED] > > > > > > > > > > --------------------------------------------------------------------- > > To unsubscribe, e-mail: [EMAIL PROTECTED] > > For additional commands, e-mail: [EMAIL PROTECTED] > > > > > --------------------------------------------------------------------- To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
