Support for cookie based authentication

Description

None

Environment

None

Activity

Show:
Hannes Ebner
October 21, 2013, 2:41 PM
Hannes Ebner
October 15, 2013, 9:03 PM

Also provide possibility to logout and remove the cookie

Hannes Ebner
October 15, 2013, 8:57 PM

See also "Cookies - Store an authentication token" at http://stackoverflow.com/questions/3982022/cookies-store-an-authentication-token

Hannes Ebner
September 12, 2013, 9:21 AM
Edited

Set cookie on the server side for root-path ( / ).

The cookie should contain the following information:

  • Session ID (to be stored in a HashMap on the server, does not have to survive server restarts)

  • User name, language and other relevant principal information

  • Cookie expiration date should be sent from the client to the server during the login request. If no expiration duration is received from the client a default of 7 days should be set.

Hannes Ebner
June 21, 2010, 8:44 AM

Moving to M14 together with the update to Restlet 2.0. The proposed solution only works with Restlet 2.0. As an alternative we wait for Restlet 2.1 where native support for cookies is expected.

Fixed

Assignee

Hannes Ebner

Reporter

Hannes Ebner

Labels

None

Components

Fix versions

Priority

Major