Uploaded image for project: 'Apache Jena'
  1. Apache Jena
  2. JENA-480

Unify HTTP usage and authentication mechanisms in ARQ

    XMLWordPrintableJSON

    Details

    • Type: Improvement
    • Status: Closed
    • Priority: Major
    • Resolution: Fixed
    • Affects Version/s: None
    • Fix Version/s: Jena 2.11.0
    • Component/s: ARQ
    • Labels:
      None

      Description

      Currently ARQ uses a mixture of HttpClient and HttpURLConnection to perform various HTTP operations e.g. SPARQL Queries, SPARQL Updates and SPARQL Graph Store Protocol.

      This has the effect of making the code somewhat awkward to maintain and makes certain operations like authentication more complex than they need to be because different parts of the system support different modes of authentication.

      For example currently SPARQL queries only support Basic Auth and they always pre-authenticate so they cannot do proxy auth or use any other kind of auth method. On the other hand SPARQL updates use HttpClient which is capable of performing Basic, Digest, NTLM, SPNEGO and Kerberos for both normal and proxy auth but is never pre-authenticates.

      This task proposes unifying all HTTP operations in ARQ to use Apache HttpClient since it is more flexible and introducing a more extensible framework for doing authentication.

      In terms of HTTP unification we need to convert the following:

      • HttpQuery should use HttpClient
      • LocatorURL should use HttpClient

      In terms of HTTP Authentication my idea is as follows, introduce a new interface HttpAuthenticator which provides an apply(AbstractHttpClient client, URI target) method. All systems that may permit HTTP auth will allow use of an authenticator, providing a generic interface for authenticators will allow us to introduce authenticators for other auth schemes e.g. form based logins.

      We can also provide authenticators that leverage existing mechanisms e.g. storing credentials in a service context which would be used by default. Existing methods that accept username and password would use simpler authenticators.

        Attachments

          Issue Links

            Activity

              People

              • Assignee:
                rvesse Rob Vesse
                Reporter:
                rvesse Rob Vesse
              • Votes:
                0 Vote for this issue
                Watchers:
                4 Start watching this issue

                Dates

                • Created:
                  Updated:
                  Resolved:

                  Time Tracking

                  Estimated:
                  Original Estimate - 72h Original Estimate - 72h
                  72h
                  Remaining:
                  Remaining Estimate - 0h
                  0h
                  Logged:
                  Time Spent - 101h
                  101h