[jboss-dev-forums] [PicketBox Development] - Security Context Propagation
Anil Saldhana
do-not-reply at jboss.com
Wed Aug 22 09:49:25 EDT 2012
Anil Saldhana [https://community.jboss.org/people/anil.saldhana] created the discussion
"Security Context Propagation"
To view the discussion, visit: https://community.jboss.org/message/755141#755141
--------------------------------------------------------------
Discussion related to https://docs.jboss.org/author/display/SECURITY/Java+Application+Security https://docs.jboss.org/author/display/SECURITY/Java+Application+Security
When there is a need to propagate security context, the following usecases come into my mind:
a) Thread level security context propagation.
b) Session level security context propagation.
- Internal session maintained by PicketBox.
- External session injected.
The API can look like the following:
SecurityContext context = //
SecurityContextPropagation.setContext(context, Level.THREAD);
SecurityContextPropagation.setContext(context, Level.SESSION);
SecurityContextPropagation.setContext(context, session, Level.SESSION);
context = SecurityContextPropagation.getContext(); //Thread level or internal session
context = SecurityContextPropagation.getContext(session);
Note: Session is an instance of PicketBoxSession.
--------------------------------------------------------------
Reply to this message by going to Community
[https://community.jboss.org/message/755141#755141]
Start a new discussion in PicketBox Development at Community
[https://community.jboss.org/choose-container!input.jspa?contentType=1&containerType=14&container=2088]
-------------- next part --------------
An HTML attachment was scrubbed...
URL: http://lists.jboss.org/pipermail/jboss-dev-forums/attachments/20120822/1b1b7e1d/attachment.html
More information about the jboss-dev-forums
mailing list