[gatein-issues] [JBoss JIRA] Resolved: (GTNWSRP-214) Implement the transfer of User roles from Consumer to producer
[
https://issues.jboss.org/browse/GTNWSRP-214?page=com.atlassian.jira.plugi...
]
Chris Laprun resolved GTNWSRP-214.
----------------------------------
Resolution: Rejected
This should be handled by WS-Security, see
http://docs.oasis-open.org/wsrp/v2/wsrp-2.0-spec-os-01.html#_user_categories for a more
complete discussion of the issue. Basically, instead of passing categories that could be
used improperly for authorization purposes, we prefer not to pass any categories. We now
have support for WS-Security authentication, use this instead.
Implement the transfer of User roles from Consumer to producer
--------------------------------------------------------------
Key: GTNWSRP-214
URL: https://issues.jboss.org/browse/GTNWSRP-214
Project: GateIn WSRP
Issue Type: Feature Request
Components: Consumer
Affects Versions: 2.1.0-Alpha02
Reporter: Boubaker Khanfir
Assignee: Chris Laprun
Fix For: 2.1.0
In {{org.gatein.wsrp.consumer.WSRPConsumerImpl.getUserContextFrom(PortletInvocation,
RuntimeContext)}}, while building UserContext object (that will be transfered to the
producer), the field {{categories}} is set to null:
{code}
UserContextConverter.createWSRPUserContextFrom(userContext, userContextKey, null);
{code}
Question:
When this feature will be available ?
And How have planned to implement it:
* Assume that Consumer&Producer share the same user database (such as a common LDAP
directory storing the users.)
or
* The Consumer provides only the userId known by the Producer. Here, the Producer manage
the authorization module by itself.
or
* The Consumer provides the user's identity with its roles, the Producer have to
trust the provided identity and works with it.
?
--
This message is automatically generated by JIRA.
For more information on JIRA, see: http://www.atlassian.com/software/jira