| Commit message (Collapse) | Author | Age | Files | Lines | |
|---|---|---|---|---|---|
| * | Added authentication method validation.ticket-477-4 | Endi Sukma Dewata | 2013-02-12 | 1 | -0/+2 |
| | | | | | | | | | | | | | | | | | | | | A new mechanism has been added to limit the authentication methods that can be used to invoke the REST methods. The AuthMethodMapping annotation maps each REST method to a list of allowed authentication methods defined auth-method.properties. When a client calls a REST method, the AuthMethod- Interceptor will intercept the call and verify that the client uses an allowed authentication method. For security reason, most REST methods that require authentication have been configured to require client certificate authentication. Authentication using username and password will only be used to get the installation token from security domain. The auth.properties have been renamed to acl.properties since it's used to store ACL mappings. Ticket #477 | ||||
| * | Added ACLInterceptor. | Endi Sukma Dewata | 2012-11-08 | 1 | -0/+4 |
| | | | | | | | | | | Previously ACL checking was done in PKIRealm by matching the URL. This code has been replaced by ACLInterceptor which will intercept RESTEasy method invocations. This allows more precise mapping of REST methods to ACL entries in acl.ldif. Ticket #287 | ||||
| * | Added REST account service. | Endi Sukma Dewata | 2012-10-22 | 1 | -0/+37 |
| A REST account service has been added to allow client to login to establish a session and to logout to destroy the session. This way multiple operations can be executed using the same session without having to re-authenticate. Ticket #357 | |||||
 |
index : pki.git | |
| Unnamed repository; edit this file 'description' to name the repository. | Endi Dewata |
| summaryrefslogtreecommitdiffstats |