Re: [wildfly-dev] How to set an authorized identity to EltyronSecurity Context
The tracking JIRA is https://issues.jboss.org/browse/WFLY-10480
On Wed, May 30, 2018 at 11:27 AM, Alessio Soldano <asoldano(a)redhat.com>
wrote:
As suggested by Darran, I'm forwarding the message below to the
list on
behalf of Jim.
The classes Jim is referring to are at https://github.com/wildfly/
wildfly/tree/master/webservices/server-integration/src/main/java/org/
jboss/as/webservices/security
---------- Forwarded message ----------
From: Jim Ma <ema(a)redhat.com>
Date: Wed, May 30, 2018 at 9:03 AM
Subject: Set an authorized identity to EltyronSecurity Context
To: Darran Lofthouse <darran.lofthouse(a)redhat.com>
Cc: Alessio Soldano <asoldano(a)redhat.com>
Hi Darran,
We are helping look at a customer issue which requires propagate the
authenticated subject from webservice subsystem to
ejb subystem. With old security domain , we can do this with creating a
subject :
@Override
public void pushSubjectContext(final Subject subject, final Principal
principal, final Object credential) {
AccessController.doPrivileged(new PrivilegedAction<Void>() {
public Void run() {
SecurityContext securityContext =
SecurityContextAssociation.getSecurityContext();
if (securityContext == null) {
securityContext = createSecurityContext(getSecur
ityDomain());
setSecurityContextOnAssociation(securityContext);
}
securityContext.getUtil().createSubjectInfo(principal, credential,
subject);
return null;
}
});
}
After Elytron, what is the equivalent thing to do this then ejb can
retrieve this security without check this twice ?
Thanks,
Jim
--
Alessio Soldano
Associate Manager
Red Hat
<https://www.redhat.com>
<https://red.ht/sig>
--
Alessio Soldano
Associate Manager
Red Hat
<https://www.redhat.com>
<https://red.ht/sig>
Attachments:
- attachment.html (text/html — 4.8 KB)