9:57 a.m.
A Java EE or embeddable EJB container must provide the following built-in
beans, all of which
have qualifier @Default:
a bean with bean type javax.security.Principal, allowing injection of a
Principal
representing the current caller identity.
The spec does not say the scope of this bean. In Weld, what is the scope
for the Principal bean?
--
Thanks
Emily
=================
Emily Jiang
ejiang(a)apache.org
3:24 a.m.
It's @Dependent. But a special proxy is injected and SPI
org.jboss.weld.security.spi.SecurityServices.getPrincipal() is invoked
to obtain the current caller identity for every invocation of an
injected reference.
Martin
Dne 1.9.2017 v 16:57 Emily Jiang napsal(a):
A Java EE or embeddable EJB container must provide the following
built-in beans, all of which
have qualifier @Default:
a bean with bean type javax.security.Principal, allowing injection of a
Principal
representing the current caller identity.
The spec does not say the scope of this bean. In Weld, what is the scope
for the Principal bean?
--
Thanks
Emily
=================
Emily Jiang
ejiang(a)apache.org <mailto:ejiang@apache.org>
_______________________________________________
weld-dev mailing list
weld-dev(a)lists.jboss.org
https://lists.jboss.org/mailman/listinfo/weld-dev
--
Martin Kouba
Senior Software Engineer
Red Hat, Czech Republic
4:09 a.m.
Does this mean it functions as a Request scoped bean even though it is a
Dependent bean?
Many thanks,
Emily
===========================
Emily Jiang
WebSphere Application Server, CDI & MicroProfile Development Lead
MP 211, DE3A20, Winchester, Hampshire, England, SO21 2JN
Phone: +44 (0)1962 816278 Internal: 246278
Email: emijiang(a)uk.ibm.com
Lotus Notes: Emily Jiang/UK/IBM@IBMGB
From: Martin Kouba <mkouba(a)redhat.com>
To: Emily Jiang <emijiang6(a)googlemail.com>, Weld-Dev List
<weld-dev(a)lists.jboss.org>
Date: 04/09/2017 09:24
Subject: Re: [weld-dev] Principal built-in bean
Sent by: weld-dev-bounces(a)lists.jboss.org
It's @Dependent. But a special proxy is injected and SPI
org.jboss.weld.security.spi.SecurityServices.getPrincipal() is invoked
to obtain the current caller identity for every invocation of an
injected reference.
Martin
Dne 1.9.2017 v 16:57 Emily Jiang napsal(a):
--
Martin Kouba
Senior Software Engineer
Red Hat, Czech Republic
_______________________________________________
weld-dev mailing list
weld-dev(a)lists.jboss.org
https://urldefense.proofpoint.com/v2/url?u=https-3A__lists.jboss.org_mail...
Unless stated otherwise above:
IBM United Kingdom Limited - Registered in England and Wales with number
741598.
Registered office: PO Box 41, North Harbour, Portsmouth, Hampshire PO6 3AU
A Java EE or embeddable EJB container must provide the following
built-in beans, all of which
have qualifier @Default:
a bean with bean type javax.security.Principal, allowing injection of a
Principal
representing the current caller identity.
The spec does not say the scope of this bean. In Weld, what is the scope
for the Principal bean?
--
Thanks
Emily
=================
Emily Jiang
ejiang(a)apache.org <mailto:ejiang@apache.org>
_______________________________________________
weld-dev mailing list
weld-dev(a)lists.jboss.org
https://urldefense.proofpoint.com/v2/url?u=https-3A__lists.jboss.org_mail...
4:17 a.m.
Well, it works similar to how @Dependent stateless session beans work.
Unlike @RequestScoped there is no real CDI context just a special proxy
that delegates to SPI.
Martin
Dne 4.9.2017 v 11:09 Emily Jiang napsal(a):
Does this mean it functions as a Request scoped bean even though it
is a
Dependent bean?
Many thanks,
Emily
===========================
Emily Jiang
WebSphere Application Server, CDI & MicroProfile Development Lead
MP 211, DE3A20, Winchester, Hampshire, England, SO21 2JN
Phone: +44 (0)1962 816278 Internal: 246278
Email: emijiang(a)uk.ibm.com
Lotus Notes: Emily Jiang/UK/IBM@IBMGB
From: Martin Kouba <mkouba(a)redhat.com>
To: Emily Jiang <emijiang6(a)googlemail.com>, Weld-Dev List
<weld-dev(a)lists.jboss.org>
Date: 04/09/2017 09:24
Subject: Re: [weld-dev] Principal built-in bean
Sent by: weld-dev-bounces(a)lists.jboss.org
------------------------------------------------------------------------
It's @Dependent. But a special proxy is injected and SPI
org.jboss.weld.security.spi.SecurityServices.getPrincipal() is invoked
to obtain the current caller identity for every invocation of an
injected reference.
Martin
Dne 1.9.2017 v 16:57 Emily Jiang napsal(a):
> A Java EE or embeddable EJB container must provide the following
> built-in beans, all of which
> have qualifier @Default:
>
> a bean with bean type javax.security.Principal, allowing injection of a
> Principal
> representing the current caller identity.
>
> The spec does not say the scope of this bean. In Weld, what is the scope
> for the Principal bean?
>
> --
> Thanks
> Emily
> =================
> Emily Jiang
> ejiang(a)apache.org <mailto:ejiang@apache.org>
>
>
> _______________________________________________
> weld-dev mailing list
> weld-dev(a)lists.jboss.org
>
https://urldefense.proofpoint.com/v2/url?u=https-3A__lists.jboss.org_mail...
>
--
Martin Kouba
Senior Software Engineer
Red Hat, Czech Republic
_______________________________________________
weld-dev mailing list
weld-dev(a)lists.jboss.org
https://urldefense.proofpoint.com/v2/url?u=https-3A__lists.jboss.org_mail...
Unless stated otherwise above:
IBM United Kingdom Limited - Registered in England and Wales with number
741598.
Registered office: PO Box 41, North Harbour, Portsmouth, Hampshire PO6 3AU
--
Martin Kouba
Senior Software Engineer
Red Hat, Czech Republic
4:22 a.m.
Hi,
On Mon, Sep 4, 2017 at 11:17 AM, Martin Kouba <mkouba(a)redhat.com> wrote:
Well, it works similar to how @Dependent stateless session beans
work.
Unlike @RequestScoped there is no real CDI context just a special proxy
that delegates to SPI.
Indeed, it can't be really request scope, since the principal can
potentially change many times during a request. Though, once initially set
it normally applies for the remainder of the web request. For other usages
of the request scope it's not so well defined in EE actually.
Talking about this build-in bean though, wouldn't it be a good idea to let
JSR 375 take ownership of it? The CDI spec before proposed to the servlet
spec to take ownership of the build-in beans for the Servlet owned
artefacts (such as HttpServletRequest).
Kind regards,
Arjan Tijms
2635
days inactive
2638
days old
4 comments
4 participants
participants (4)
-
arjan tijms -
Emily Jiang -
Emily Jiang -
Martin Kouba