-
Type:
Improvement
-
Status: Open
-
Priority:
Major
-
Resolution: Unresolved
-
Affects Version/s: 1.4.1
-
Fix Version/s: None
-
Component/s: None
-
Labels:None
I have written https://github.com/steinarb/authservice#forms-based-nginx-login-and-pluggable-shiro-auth-in-karaf which is a "poor man's single sign-on" for multiple webapps running inside the same apache karaf OSGi container.
However to get the single sign-on to work I need "outside help" from an nginx reverse proxy that rewrites the cookie paths:
https://github.com/steinarb/authservice#installing-and-configuring-nginx
location /authservice { auth_request off; # Necessary for REST API POST to work, shiro will handle authorization here proxy_pass http://localhost:8181/authservice; proxy_cookie_path ~^/authservice.*$ /; proxy_set_header Host $host; }
(the proxy_cookie_path directive).
It would be nice to be able to have this work without the reverse proxy and cookie rewrite.
- is related to
-
SHIRO-714 Use a login page outside of the current webapps web context
-
- Open
-
- links to