Luke Taylor (Migrated from SEC-1490) said:
Direct support for authenticating users in GAE. This would probably consist of two parts:
an AuthenticationEntryPoint which calls the GAE UserService to provide an authentication URL (http://code.google.com/appengine/docs/java/users/overview.html)
A standard JEE Pre-Authentication configuration, accessing the servlet API to obtain the user ID (http://code.google.com/appengine/docs/java/config/webxml.html#Security_and_Authentication). See SEC-1093.
Luke Taylor said:
For the time being, this has been implemented as a sample application (see http://blog.springsource.com/2010/08/02/spring-security-in-google-app-engine/). It's not clear atthe moment whether we need direct support within the framework.
This issue depends on #1344