|
|
|
Re: Servlet Session in RAP [message #1712146 is a reply to message #1710058] |
Wed, 21 October 2015 14:04 |
Ivan Nemeth Messages: 3 Registered: July 2009 |
Junior Member |
|
|
Hi,
I have the same problem. In our app we authenticate the user with the help of Spring's security framework. On first access the user is redirected a login page, and after successful authentication the valid security details are written into the session. After this the user is redirected to the RAP application, and the valid security is read from the session and stored in RAP UI display thread as a ThreadLocal. This worked fine with previous versions, but in the 3.0 version doesn't work anymore. The reason is what Arif said, that the login request and the rap ui have the same session, but different servletcontext, so the security details attribute is not accessible. Although OSGI http registry enables to register resources and servlets with a predefined httpcontext, but it doesn't work either because the RWTServlet's httpcontext isn't accessible. (As I see it is created in ApplicationReferenceImpl as a wrapped httpcontext.)
It seems to me that currently there is no way to share session attributes between the RWT app and other servlets (including those which are created through the http registry extension). Is there any plan to change this behaviour?
Regards,
Ivan Nemeth
[Updated on: Wed, 21 October 2015 14:44] Report message to a moderator
|
|
|
|
|
Powered by
FUDForum. Page generated in 0.01861 seconds