Results 1 to 2 of 2

Thread: Securing oauth_authenticate_token on my Grails provider

  1. Jan 21st, 2011, 02:29 AM #1
    bavinmi
    bavinmi is offline Junior Member
    Join Date
    Jan 2011
    Posts
    2

    Default Securing oauth_authenticate_token on my Grails provider

    Hi,

    I've just implemented my 3 legged OAuth provider in Grails and can successfully obtain access tokens. The only problem is that when a User authorizes the consumer app, my provider doesn't redirect to login page first if he's not logged in.

    I guess this is the behaviour of UserAuthorizationProcessingFilter that I use. It checks for authentication.isAuthenticated() but when User is not logged in, he has anonymous role, and that returns true.

    In Grails (using the spring security core plugin) I tried setting interception for this, but it doesn't filter. (I guess this intercept filter is processed after the authenticationfilter).

    Is there any solution for this? Thanks!
    Reply With Quote Reply With Quote
  2. Jan 21st, 2011, 06:29 AM #2
    bavinmi
    bavinmi is offline Junior Member
    Join Date
    Jan 2011
    Posts
    2

    Default

    Ok, resolved it by first going through a secured controller, and then redirect to the authorisation part.
    Reply With Quote Reply With Quote
« Previous Thread | Next Thread »

Tags for this Thread

Posting Permissions

  • You may not post new threads
  • You may not post replies
  • You may not post attachments
  • You may not edit your posts
  •  

Forum Rules