<div dir="ltr">Ok thank you.<div><br></div><div>I think I will speak to you more once I have this initial MicroProfile JWT integration complete. One of the motivations of MP-JWT is the ability to add an annotation to the Application to activate the mechanism whilst avoiding the need to edit the web.xml. However two updates are still required to the web.xml to make authentication mandatory (which is restricted to being path based) and to enable access control.</div><div><br></div><div>Those remaining two point I think we can discuss but it may also be worth raising in the MicroProfile group to see if there is interest in getting the behaviour spec defined.</div><div><br></div><div>Regards,</div><div>Darran Lofthouse.</div><div><br></div></div><br><div class="gmail_quote"><div dir="ltr" class="gmail_attr">On Tue, Nov 5, 2019 at 12:40 AM Ron Sigal <<a href="mailto:rsigal@redhat.com">rsigal@redhat.com</a>> wrote:<br></div><blockquote class="gmail_quote" style="margin:0px 0px 0px 0.8ex;border-left:1px solid rgb(204,204,204);padding-left:1ex">
<div bgcolor="#FFFFFF">
<p>I haven't interacted with that piece of RESTEasy. Purely Bill
Burke, I would think.<br>
</p>
<div>On 11/4/19 4:37 PM, Alessio Soldano
wrote:<br>
</div>
<blockquote type="cite">
<div dir="ltr">
<div>Hi Darran,<br>
</div>
<br>
<div class="gmail_quote">
<div dir="ltr" class="gmail_attr">On Fri, Nov 1, 2019 at 7:16
PM Darran Lofthouse <<a href="mailto:darran.lofthouse@jboss.com" target="_blank">darran.lofthouse@jboss.com</a>>
wrote:<br>
</div>
<blockquote class="gmail_quote" style="margin:0px 0px 0px 0.8ex;border-left:1px solid rgb(204,204,204);padding-left:1ex">
<div dir="ltr">
<div style="margin:0px;padding:0px 0px 20px;width:1204px;font-family:Roboto,RobotoDraft,Helvetica,Arial,sans-serif;font-size:medium">
<div>
<div id="gmail-m_3306626278264579136gmail-m_286733291398116711gmail-:7x2s" style="font-size:0.875rem;direction:ltr;margin:8px 0px 0px;padding:0px">
<div id="gmail-m_3306626278264579136gmail-m_286733291398116711gmail-:7yx3" style="overflow:hidden;font-variant-numeric:normal;font-variant-east-asian:normal;font-stretch:normal;font-size:small;line-height:1.5;font-family:Arial,Helvetica,sans-serif">
<div dir="ltr">I have found the following that
answers my question: -
<div><br>
</div>
<div><a href="https://docs.jboss.org/resteasy/docs/4.4.0.Final/userguide/html/Securing_JAX-RS_and_RESTeasy.html" target="_blank">https://docs.jboss.org/resteasy/docs/4.4.0.Final/userguide/html/Securing_JAX-RS_and_RESTeasy.html</a><br>
</div>
<div><br>
</div>
<div>So overall I both need to switch on support
for the annotations AND configure a path based
security constraint in the web.xml to trigger
authentication.</div>
<div><br>
</div>
<div>Have there been any discussions on looking
into this further? It seems plausible that
authentication could be triggered in the event
a role is required if authentication has not
already been performed: -</div>
</div>
</div>
</div>
</div>
</div>
</div>
</blockquote>
<div>No discussion here recently AFAIR. Maybe Ron remembers
anything?</div>
<div>I'm fine evaluating possible RFE anyway.</div>
<div>Thanks<br>
</div>
<div><br>
</div>
<div> </div>
<blockquote class="gmail_quote" style="margin:0px 0px 0px 0.8ex;border-left:1px solid rgb(204,204,204);padding-left:1ex">
<div dir="ltr">
<div style="margin:0px;padding:0px 0px 20px;width:1204px;font-family:Roboto,RobotoDraft,Helvetica,Arial,sans-serif;font-size:medium">
<div>
<div id="gmail-m_3306626278264579136gmail-m_286733291398116711gmail-:7x2s" style="font-size:0.875rem;direction:ltr;margin:8px 0px 0px;padding:0px">
<div id="gmail-m_3306626278264579136gmail-m_286733291398116711gmail-:7yx3" style="overflow:hidden;font-variant-numeric:normal;font-variant-east-asian:normal;font-stretch:normal;font-size:small;line-height:1.5;font-family:Arial,Helvetica,sans-serif">
<div dir="ltr">
<div><br>
</div>
<div><a href="https://javaee.github.io/javaee-spec/javadocs/javax/servlet/http/HttpServletRequest.html#authenticate-javax.servlet.http.HttpServletResponse-" target="_blank">https://javaee.github.io/javaee-spec/javadocs/javax/servlet/http/HttpServletRequest.html#authenticate-javax.servlet.http.HttpServletResponse-</a><br>
</div>
<div><br>
</div>
<div>Regards,</div>
<div>Darran Lofthouse.</div>
</div>
</div>
</div>
</div>
</div>
</div>
<br>
<div class="gmail_quote">
<div dir="ltr" class="gmail_attr">On Fri, Nov 1, 2019 at
5:23 PM Darran Lofthouse <<a href="mailto:darran.lofthouse@jboss.com" target="_blank">darran.lofthouse@jboss.com</a>>
wrote:<br>
</div>
<blockquote class="gmail_quote" style="margin:0px 0px 0px 0.8ex;border-left:1px solid rgb(204,204,204);padding-left:1ex">
<div dir="ltr">Hello,
<div><br>
</div>
<div>I am presently in the process of adding
MicroProfile JWT support to WildFly, most of the
code to activate this is now ready but I just wanted
to ask for some pointers as to how RestEasy triggers
the need for authentication for a request?</div>
<div><br>
</div>
<div>I have a deployed endpoint annotated
with @RolesAllowed, I am about to attach a debugger
and look into the call in more detail but thought I
would ask here as well if there are any pointers.</div>
<div><br>
</div>
<div>Regards,</div>
<div>Darran Lofthouse.</div>
<div><br>
</div>
</div>
</blockquote>
</div>
_______________________________________________<br>
resteasy-dev mailing list<br>
<a href="mailto:resteasy-dev@lists.jboss.org" target="_blank">resteasy-dev@lists.jboss.org</a><br>
<a href="https://lists.jboss.org/mailman/listinfo/resteasy-dev" rel="noreferrer" target="_blank">https://lists.jboss.org/mailman/listinfo/resteasy-dev</a><br>
</blockquote>
</div>
<br clear="all">
<br>
-- <br>
<div dir="ltr">
<div dir="ltr">
<div>
<p style="font-weight:bold;margin:0px;padding:0px;font-size:14px;text-transform:capitalize;font-family:RedHatText,sans-serif">
<span>Alessio</span> <span>Soldano</span><span style="color:rgb(170,170,170);margin:0px"></span> </p>
<p style="font-weight:normal;font-size:12px;margin:0px;text-transform:capitalize;font-family:RedHatText,sans-serif">
<span>Associate Manager, Software Engineering</span> </p>
<p style="font-weight:normal;margin:0px 0px 4px;font-size:12px;font-family:RedHatText,sans-serif">
<a style="color:rgb(0,136,206);font-size:12px;margin:0px;text-decoration:none;font-family:RedHatText,sans-serif" href="https://www.redhat.com" target="_blank">Red Hat <span></span></a> </p>
<div style="margin-bottom:4px"> </div>
<div style="margin-top:12px">
<table border="0">
<tbody>
<tr>
<td width="100px"><a href="https://www.redhat.com" target="_blank"> <img src="https://marketing-outfit-prod-images.s3-us-west-2.amazonaws.com/f5445ae0c9ddafd5b2f1836854d7416a/Logo-RedHat-Email.png" width="90" height="auto"></a> </td>
</tr>
</tbody>
</table>
</div>
</div>
</div>
</div>
</div>
<br>
<fieldset></fieldset>
<pre>_______________________________________________
resteasy-dev mailing list
<a href="mailto:resteasy-dev@lists.jboss.org" target="_blank">resteasy-dev@lists.jboss.org</a>
<a href="https://lists.jboss.org/mailman/listinfo/resteasy-dev" target="_blank">https://lists.jboss.org/mailman/listinfo/resteasy-dev</a>
</pre>
</blockquote>
</div>
_______________________________________________<br>
resteasy-dev mailing list<br>
<a href="mailto:resteasy-dev@lists.jboss.org" target="_blank">resteasy-dev@lists.jboss.org</a><br>
<a href="https://lists.jboss.org/mailman/listinfo/resteasy-dev" rel="noreferrer" target="_blank">https://lists.jboss.org/mailman/listinfo/resteasy-dev</a><br>
</blockquote></div>