Reputation: 16525
How to implement external auth in wicket
I want to login to my application using some external auth like facebook google or steam.
I found library: org.pac4j which support some of this login but I dot know how I can integrate it with wicket. After successful auth I want to signIn into my session.
public class WicketSteamAuthenticator extends SteamAuthenticator {
public WicketSteamAuthenticator(SteamClient client) {
super(client);
}
@Override
public void validate(OpenIdCredentials credentials, WebContext context) {
super.validate(credentials, context);
AuthenticatedWebSession.get().signIn(credentials.getUserProfile().getId(), null);
}
}
Problem is that this security filters are before wicket-filter which means I got exception:
There is no application attached to current thread wicket session
is there already some example how to use wicket with spring security and with some external auth ?
Upvotes: 3
Views: 320
Answers (1)
Reputation: 2511
I don't have a deep knowledge of org.pac4j but it's my understanding that it works with callback endpoints that can be used also to save user profile in Session. So instead of invoking signIn on AuthenticatedWebSession I would create a custom implementation of class AbstractAuthenticatedWebSession which is able to retrieve the user profile previously saved by org.pac4j and decide if user is signed id and which roles it has. Hope this could help you.
Upvotes: 3
Related Questions
- How to perform authorization with external authenticate
- How to use Spring Security OAuth2 with Apache Wicket?
- Spring Security OAuth2 Login using External Login Page
- Spring Security and Custom External Authentication
- how to implement a authentication with spring boot security?
- implementing authentication using oauth 2.0 and wicket
- Spring security only for authorization. External authentication
- wicket authentication / login
- How to provide openId login to wicket app?
- Wicket auth-role : inject external user credential from JSP