Hi All,
We are trying to implement Single Point of Authentication in our REST architecture. I have followed all the guidelines in either OE Documentation and OERealm-Draft Pdf, when I tried to GET any of the exposed resources, I can see in my AppServer log file that the proper methods in HybridRealm.cls are being called, User/Password are being validated correctly but yet I'm getting 403, Unauthorized response.
I'm attaching my current files: appSecurity-basic-oerealm.xml and HybridRealm.cls for better information on how I have it setup.
It appears to be a Spring Role configuration problem but after few days trying, I haven't been able to figure it out.
Can any one please help ?
Thanks a lot.
Hi Paul,
Thanks for you quick answer. In my attached code, you can see I do return a numerical userid, I believe there should be something else. Any other ideas ?
Thanks
Oscar
Flag this post as spam/abuse.
WIth the example class you must assign a value to _user._user-number so that the class can return a numerical userid or modify the class accordingly.
As an FYI, Peter Judge and I will be giving a 3 hour, hands-on workshop on OE REST Security at this year's PUG Challenge Americas in June. Go to pugchallenge.org for more details.
Hi Paul,
Thanks for you quick answer. In my attached code, you can see I do return a numerical userid, I believe there should be something else. Any other ideas ?
Thanks
Oscar
Hi Paul,
Thanks for you quick answer. In my attached code, you can see I do return a numerical userid, I believe there should be something else. Any other ideas ?
Thanks
Oscar
Flag this post as spam/abuse.
Naveneet,
You nailed it !!!!, that solved my problem. Thank you so much !!!!!.