Uploaded image for project: '[Read Only] - Hippo Plugins'
  1. [Read Only] - Hippo Plugins
  2. HIPPLUG-815

HST Spring Security Plugin - support authentication bypass in Channel Manager

    XMLWordPrintable

Details

    • Improvement
    • Status: Closed
    • High
    • Resolution: Fixed
    • None
    • None
    • None
    • None

    Description

      As discussed in [1] in the Hippo Community group, it would be good to implement an authentication bypass in the Channel Manager.

      Now, since this can be achieved by setting 'hst:channelmanagersiteauthenticationskipped' to 'true' for repository-controlled authentication, it would be a logical step to extend this support to the HST Spring Security Plugin.

      This for example allows a different/pluggable authentication framework to be used on the site, while enabling editors to maintain the site using the Channel Manager.

      [1] - https://groups.google.com/forum/#!topic/hippo-community/01f8C1c_OvI

      Attachments

        Issue Links

          relates to

          Improvement - An improvement or enhancement to an existing feature or task. HSTTWO-2229 Viewing authenticated pages via the channel manager should optionally bypass the JAAS authentication

          • Normal - Normal priority, tasks to be done before next intermediate release
          • Closed

          Activity

            People

              wko Woonsan Ko (Inactive)
              bsnijders Brian Snijders
              Votes:
              0 Vote for this issue
              Watchers:
              2 Start watching this issue

              Dates

                Created:
                Updated:
                Resolved: