Details
-
Type: Task
-
Status: Closed
-
Priority: Major
-
Resolution: Fixed
-
Affects Version/s: None
-
Fix Version/s: 1.8.2
-
Component/s: Sample Apps
-
Labels:None
-
Environment:ICEfaces
-
ICEsoft Forum Reference:
-
Affects:Sample App./Tutorial
Description
We need to provide an example of how the login and logout process should be implemented in ICEfaces. The example should cover a few different ways one can do authentication such as:
* basic authentication (in conjunction with the servlet container)
* form authentication (in conjunction with the servlet container)
* application driven authentication
* basic authentication (in conjunction with the servlet container)
* form authentication (in conjunction with the servlet container)
* application driven authentication
Activity
- All
- Comments
- History
- Activity
- Remote Attachments
- Subversion
We need to do the followings:
- create page with links to the three types of authentication
- setup app. server with users and role or at least reuse the pre-defined users in Tomcat
Basic Authentication
- create "logout.jspx" with a command button that triggers a redirect "logout.jspx" using navigation rules
- bind command button to the bean that invalidates the session
- setup servlet container with basic authentication
Form Authentication
- create "form-login.html" – this will avoid session creation before getting authenticated
- reuse "logout.jspx", the bean, and related navigation rules from "Basic Authentication"
Application Authentication
- create "app-login.jspx" page that uses ICEfaces components for input
- create bean that handles authentication
- define navigation rules for successful authentication
Show
Mircea Toma
added a comment - We need to do the followings:
create page with links to the three types of authentication
setup app. server with users and role or at least reuse the pre-defined users in Tomcat
Basic Authentication
create "logout.jspx" with a command button that triggers a redirect "logout.jspx" using navigation rules
bind command button to the bean that invalidates the session
setup servlet container with basic authentication
Form Authentication
create "form-login.html" – this will avoid session creation before getting authenticated
reuse "logout.jspx", the bean, and related navigation rules from "Basic Authentication"
Application Authentication
create "app-login.jspx" page that uses ICEfaces components for input
create bean that handles authentication
define navigation rules for successful authentication
Revision #20790 - Committed application "ice3013" svn/repo/applications/ice3013.
This application has BASIC, FORM, and APPLICATION methods of authenticating with ICEfaces.
The only issue is after logging in with BASIC and logging out, the user is not prompted to authenticate the next time they attempt to reach the secure page.