Uploaded image for project: 'WildFly Core'
  1. WildFly Core
  2. WFCORE-5007

Make use of the SocketAddressCallbackServerMechanismFactory to set the peer's IP address during HTTP authentication

    Details

    • Type: Task
    • Status: Resolved (View Workflow)
    • Priority: Major
    • Resolution: Done
    • Affects Version/s: None
    • Fix Version/s: 13.0.0.Beta2
    • Component/s: Security
    • Labels:
      None

      Description

      WFCORE-4725 added the ability to configure a source-address-role-decoder to make use of the client's IP address for authorization decisions. Currently, it's only possible to make use of the IP address of a remote client during SASL authentication. To be able to make use of the IP address of a client during HTTP authentication, we just need to make use of a SocketAddressCallbackServerMechanismFactory to inform the server's callback handler of the peer's address.

        Gliffy Diagrams

          Attachments

            Issue Links

              Activity

                People

                • Assignee:
                  fjuma Farah Juma
                  Reporter:
                  fjuma Farah Juma
                • Votes:
                  0 Vote for this issue
                  Watchers:
                  1 Start watching this issue

                  Dates

                  • Created:
                    Updated:
                    Resolved: