[jetty-users] Composite Authenticator implementations?

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index] [List Home]

[jetty-users] Composite Authenticator implementations?

From: Rickard Öberg <rickardoberg@xxxxxxxxx>
Date: Fri, 1 Aug 2025 13:34:06 +0800
Delivered-to: jetty-users@xxxxxxxxxxx
List-archive: <https://www.eclipse.org/mailman/private/jetty-users/>
List-help: <mailto:jetty-users-request@eclipse.org?subject=help>
List-subscribe: <https://www.eclipse.org/mailman/listinfo/jetty-users>, <mailto:jetty-users-request@eclipse.org?subject=subscribe>
List-unsubscribe: <https://www.eclipse.org/mailman/options/jetty-users>, <mailto:jetty-users-request@eclipse.org?subject=unsubscribe>

Hi!

I want to support multiple ways to authenticate users, which may be clients(browsers) and other servers. For example: JWT token, Bearer header, client certs, SSO cookie tokens. What is a good strategy for doing this? Would it be possible to create a delegating Authenticator with all of the above as options? Has anyone done anything like this before?

thanks, Rickard

Follow-Ups:
- Re: [jetty-users] Composite Authenticator implementations?
  - From: John English

Prev by Date: Re: [jetty-users] Content negotiation for Accept-Language (static pages) ?
Next by Date: Re: [jetty-users] Composite Authenticator implementations?
Previous by thread: [jetty-users] Content negotiation for Accept-Language (static pages) ?
Next by thread: Re: [jetty-users] Composite Authenticator implementations?
Index(es):
- Date
- Thread

Breadcrumbs