Uploaded image for project: 'Sling'
  1. Sling
  2. SLING-9622

Avoid registration of auth requirements for aliases and vanity paths

    XMLWordPrintableJSON

Details

    • Improvement
    • Status: Closed
    • Major
    • Resolution: Fixed
    • None
    • Auth Core 1.5.0
    • Authentication
    • None

    Description

      Right now when auth requirements are registered, they need to be registered for the resource path, as well as all vanity paths and potentially all combinations of aliases for that path. First of all, this creates potentially a lot of auth requirements for a single path, but as well requires that the registrar of the auth requirement to be aware of vanity paths and aliases and do the right thing and update the auth requirements whenever there are changes.
      We should avoid these additional registrations and processing.
      The SlingAuthenticator is currently checking the request path against the auth requirements. We could change this with checking the resolved path. So the authenticator could use a service user resolver and resolve the path and then check the auth requirements.
      This avoids all the extra work for the registrar of the auth requirements, but comes with the additional cost of a resolve call per request

      Attachments

        Issue Links

          causes

          Task - A task that needs to be done. SLING-10368 Add service user mapping for Auth Core

          • Major - Major loss of function.
          • Resolved
          is related to

          Bug - A problem which impairs or prevents the functions of the product. SLING-11171 WARN "The provided service user id 'serviceuser--org.apache.sling.auth.core' is not a known JCR system user id and therefore not allowed in the Sling Service User Mapper."

          • Major - Major loss of function.
          • Closed

          Improvement - An improvement or enhancement to an existing feature or task. SLING-9689 Handle authentication requirements for children of protected resources when internal mappings

          • Major - Major loss of function.
          • Open

          Improvement - An improvement or enhancement to an existing feature or task. SLING-9672 Expose vanity paths from ResourceMapper.getAllMappings()

          • Major - Major loss of function.
          • Closed

          Improvement - An improvement or enhancement to an existing feature or task. SLING-9676 Improve Javadoc for MapEntriesHandler

          • Minor - Minor loss of function, or other problem where easy workaround is present.
          • Closed
          relates to

          Bug - A problem which impairs or prevents the functions of the product. SLING-9620 ResourceMapperImpl.getAllMappings does not respect multi-valued sling:alias

          • Major - Major loss of function.
          • Closed

          Bug - A problem which impairs or prevents the functions of the product. SLING-9623 ResourceMapperImpl.getAllMappings is incomplete for nested alias

          • Major - Major loss of function.
          • Closed

          Activity

            People

              cziegeler Carsten Ziegeler
              cziegeler Carsten Ziegeler
              Votes:
              0 Vote for this issue
              Watchers:
              3 Start watching this issue

              Dates

                Created:
                Updated:
                Resolved:

                Time Tracking

                  Estimated:
                  Original Estimate - Not Specified
                  Not Specified
                  Remaining:
                  Remaining Estimate - 0h
                  0h
                  Logged:
                  Time Spent - 1.5h
                  1.5h