SEC-1490: Google App Engine authentication support #1729

Closed
spring-issuemaster opened this Issue May 28, 2010 · 2 comments

1 participant

@spring-issuemaster

Luke Taylor (Migrated from SEC-1490) said:

Direct support for authenticating users in GAE. This would probably consist of two parts:

  1. an AuthenticationEntryPoint which calls the GAE UserService to provide an authentication URL (http://code.google.com/appengine/docs/java/users/overview.html)

  2. A standard JEE Pre-Authentication configuration, accessing the servlet API to obtain the user ID (http://code.google.com/appengine/docs/java/config/webxml.html#Security_and_Authentication). See SEC-1093.

By using the pre-authentication framework, we can easily supplement the limited functionality that GAE appears to provide in terms of user roles etc.

@spring-issuemaster

Luke Taylor said:

For the time being, this has been implemented as a sample application (see http://blog.springsource.com/2010/08/02/spring-security-in-google-app-engine/). It's not clear atthe moment whether we need direct support within the framework.

@spring-issuemaster spring-issuemaster added this to the 3.1.0.M1 milestone Feb 5, 2016
@spring-issuemaster

This issue depends on #1344

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment