Major Description
Currently, the JaasBasicAuthFilter does not set the security context of the request after a successful login. However, this information of an authenticated user might be required for further processing, for example to perform authorization checks after the authentication.
> The filter should be extended to add the Security Context after a successful login.
Another improvement would be to assign the right Priority to the filter. The current implementation uses the default priority, which is Priorities.USER = 5000. This is a lower priority than for example AUTHORIZATION, which means that the basic auth filter would run after authorization filters.
> Assing the correct Priorities.AUTHENTICATION = 1000 priority to the filter
Attachments
Issue Links
- links to