summaryrefslogtreecommitdiffstats
path: root/base/ocsp/shared/webapps/ocsp/WEB-INF/auth.properties
Commit message (Collapse)AuthorAgeFilesLines
* Added configuration file for authentication method validation.ticket-477-6Endi Sukma Dewata2013-02-181-10/+0
| | | | | | | | | | The auth.properties have been converted into a configuration file to store the list of allowed authentication methods for each REST method. The old auth.properties have been renamed to acl.properties since it's used to store ACL mappings. Ticket #510
* Added authentication method validation.ticket-477-7Endi Sukma Dewata2013-02-181-3/+3
| | | | | | | | | | | | | | | A new mechanism has been added to specify the authentication methods that can be used to invoke the REST methods. The AuthMethodMapping annotation maps each REST method to a list of allowed authentication methods. When a client calls a REST method, the AuthMethodInterceptor will intercept the call and verify that the client uses an allowed authentication method. Most REST methods that require authentication have been configured to require client certificate authentication. Authentication using username and password will only be used to get the installation token from security domain. Ticket #477
* Added ACLInterceptor.Endi Sukma Dewata2012-11-081-6/+6
| | | | | | | | | Previously ACL checking was done in PKIRealm by matching the URL. This code has been replaced by ACLInterceptor which will intercept RESTEasy method invocations. This allows more precise mapping of REST methods to ACL entries in acl.ldif. Ticket #287
* Enabled account service for TKS and OCSP.Endi Sukma Dewata2012-10-251-0/+2
| | | | | | | The REST account service has been added to TKS and OCSP to enable authentication. Ticket #375
* Changes to allow installation of ocsp and tksAde Lee2012-08-101-0/+8
generated by cgit (git 2.34.1) at 2024-05-01 19:02:18 +0000