Re: [ecf-dev] Authentication when using DS for Remote Services?

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index] [List Home]

Re: [ecf-dev] Authentication when using DS for Remote Services?

From: Scott Lewis <slewis@xxxxxxxxxxxxx>
Date: Thu, 24 Jul 2014 19:12:17 -0700
Delivered-to: ecf-dev@xxxxxxxxxxx
List-archive: <https://dev.eclipse.org/mailman/private/ecf-dev>
List-help: <mailto:ecf-dev-request@eclipse.org?subject=help>
List-subscribe: <https://dev.eclipse.org/mailman/listinfo/ecf-dev>, <mailto:ecf-dev-request@eclipse.org?subject=subscribe>
List-unsubscribe: <https://dev.eclipse.org/mailman/options/ecf-dev>, <mailto:ecf-dev-request@eclipse.org?subject=unsubscribe>
User-agent: Mozilla/5.0 (Windows NT 6.3; WOW64; rv:24.0) Gecko/20100101 Thunderbird/24.6.0

Hi Folks,

I've created a two new example bundles (one customizing the remoteservice host to do authentication, the other customizing the remoteservice consumer/client to do the sending of the authenticationinformation (i.e. username/password). See [1] for details.

Mea culpa: I was a incorrect below in describing the procedure forpassing authentication information (username/password) in theconnectData for the remote service consumer. Rather than overridinggetConnectContext(), it involved defining and setting anIConnectInitiatorPolicy instance upon consumer container creation. Thisis shown in the consumer example code (in this class in the example:com.mycorp.examples.timeservice.consumer.ds.generic.auth.GenericAuthConsumerContainerSelector).


Thanks,

Scott

[1] https://bugs.eclipse.org/bugs/show_bug.cgi?id=439577#c2

On 7/21/2014 11:25 AM, Scott Lewis wrote:

Hi J,
Sorry about the slow reply...over past two weeks I've been completelyfocused on testing ECF 3.9 against the OSGi R6 CT (compatibility testsuite).
I've asked you some high-level questions on the bug [1]...about thedesire for the example you requested for setting up ECF genericauthentication.
A couple of quick responses below. If you would like to contact medirectly for support please just email me at slewis at composent.com.
On 7/15/2014 9:48 PM, J Langley wrote:
I believe that I am a bit closer to getting this to work using thehello remote services example. I am using zeroconf for discovery.
On the host side, I have registered a service forIHostContainerSelector. It extends the HostContainerSelector,overriding the createContainer method to use the parent to actuallycreate the container, but then sets an IConnectHandlerPolicy policyon the container before returning it. I have verified that thepolicy is called when the consumer is connected, but the connectDatais always null.
On the client side, I have registered a service forIConsumerContainerSelector. It extends theConsumerContainerSelector, overriding the getConnectContext andconnectContainer methods. However, these methods are never called.I believe that this is because the connectTargetID parameter in theConsumerContainerSelector::selectConsumerContainer method is alwaysnull.So far, I think that it is because the endpoint discovery has notoccurred at this point.
Yes, this seems right to me. TheIConsumerContainerSelector.selectConsumerContainer is called when theRSA.importService method is called, and with the BasicTopologyManager,importService is called upon endpoint discovery. So the sequencetypically looks like this:
1.  <network discovery occurs>
    -> creates EndpointDescription instance (ed)
2. Topology Manager (BasicTopologyManager) takes ed and callsRemoteServiceAdmin.importService(ed)
3.  <ECF's RSA impl>
-> Gets IConsumerContainerSelector and callsselectConsumerContainer(ed)-> Creates TCPClientSOContainer, calls connect after callinggetConnectContext()
etc.
The reason I say 'typically' is that the RSA spec makes it possiblehave/use a custom topology manager. As a compliant impl, ECF supportsthis topology manager customization, it's possible for others tocreate/use a custom topology manager...and not use theBasicTopologyManager (which is the ECF default topology manager). Butthe upshot is that you are right, with the BasicTopologyManager theendpoint description discovery triggers the RSA.importService, whichcalls the IConsumerContainerSelector.
I was finally able to override the selectConsumerContainer and setthe context for authentication on the adapter. Now when I have abreakpoint at SOContext.connect - I see the connect context that Iset for the adapter.
Ok, that seems right. Please let me know how/if I can help further.Please also feel free to use bug [1] if you wish.
I am still receiving null on the host side though. Also, it doesn'tappear that the return value from the IConnectHandlerPolicy is beingused. I will update tomorrow with any progress.
Thanks,

Scott

[1] https://bugs.eclipse.org/bugs/show_bug.cgi?id=439577


_______________________________________________
ecf-dev mailing list
ecf-dev@xxxxxxxxxxx
To change your delivery options, retrieve your password, orunsubscribe from this list, visit
https://dev.eclipse.org/mailman/listinfo/ecf-dev

Follow-Ups:
- Re: [ecf-dev] Authentication when using DS for Remote Services?
  - From: Peter Hermsdorf

References:
- [ecf-dev] Authentication when using DS for Remote Services?
  - From: J Langley
- Re: [ecf-dev] Authentication when using DS for Remote Services?
  - From: slewis
- Re: [ecf-dev] Authentication when using DS for Remote Services?
  - From: J Langley
- Re: [ecf-dev] Authentication when using DS for Remote Services?
  - From: J Langley
- Re: [ecf-dev] Authentication when using DS for Remote Services?
  - From: Scott Lewis

Prev by Date: [ecf-dev] New topic in forum Eclipse Communications Framework (ECF), called Reuse Eclipse proxy handling when making HTTP connections, by Marcel Bruch
Next by Date: Re: [ecf-dev] Authentication when using DS for Remote Services?
Previous by thread: Re: [ecf-dev] Authentication when using DS for Remote Services?
Next by thread: Re: [ecf-dev] Authentication when using DS for Remote Services?
Index(es):
- Date
- Thread

Breadcrumbs