Skip to main content
[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index] [List Home]
[es-dev] Proposal: Support multiple authentication mechanisms in a single application
Hi,

I noticed that Hantsy raised this request for an enhancement a few weeks ago: https://github.com/jakartaee/security/issues/287

I had this idea in mind for more than a year so I created a proposal and an example application in the security-examples project: https://github.com/jakartaee/security-examples/pull/11

The main idea is to make it possible to choose programmatically which of the built-in authentication mechanisms should be used based on configuration or user input. It would be possible to inject one or more mechanisms configured using the existing definition annotations (e.g. @BasicAuthenticationMechanismDefinition) and delegate authentication to them from a custom HttpAuthenticationMechanism bean. Then it's possible to choose between them based on the info in the request.

Please, have a look and comment on the issue or the PR so that we can support this or similar functionality in the next version of Security.


All the best,
Ondro Mihalyi

Director, Jakarta EE expert
OmniFish - Jakarta EE Consulting & Support | www.omnifish.ee
Omnifish OÜ, Narva mnt 5, 10117 Tallinn, Estonia | VAT: EE102487932

Back to the top