Mar 9th, 2011, 02:05 PM
Basic Authentication with OpenID Authentication
First, my apologies if this question has already been answered. I just registered. I did a search and didn't find any thing relating to my question. Here's my question:
We're currently using Spring Security (3) to authenticate users of our application using the OpenID authentication provider. Within the same application, I would like to expose web services that use basic authentication. Can I use basic authentication for our web services and OpenID authentication for the rest of the application?
If our web services used the "service" context, here's the behavior I'm looking for:
/service/** -> use basic authentication
/** -> use OpenID authentication
Mar 9th, 2011, 02:15 PM
In Spring Security 3 you can do this by using the DelegatingAuthenticationEntryPoint. Spring Security 3.1 (still at RC1) Advanced Namespace Configuration demonstrates how this is easier by allowing multiple http configurations.
Mar 9th, 2011, 02:45 PM
Awesome! I'll take a look at the resources you referenced.
Thanks for the quick reply.