Custom Authorization Header

**jslongo** · Sep 20th, 2005, 11:35 AM

A customer of our product is running SiteMinder, which renders our current Authentication and Authorization scheme via Acegi useless. To my understanding, SiteMinder utilizes the Authorization header, which is also our current means of Authentication within our product. Based on SiteMinder's usernames not mapping to our product's usernames, we must find a way around this. My idea is to use a custom Authorization header, such as 'OUR-AUTHORIZATION' rather than 'AUTHORIZATION'. Can this be accomplished with Acegi, and if so how...if not, is there a solution anyone could suggest?

John

**Ben Alex** · Sep 20th, 2005, 06:13 PM

See http://opensource2.atlassian.com/pro.../browse/SEC-35 which Scott has already done some work on. Scott, can you offer any suggestions or is there a timeframe on getting this into CVS?

Thread: Custom Authorization Header

Thread Tools

Display

Custom Authorization Header

Similar Threads

[solved] binding nested model of list containing custom obj

Question on use of custom property editors - problem found?

registerCustomEditor to a collection of custom classes

custom init with command binding ?

Using MethodSecurityInterceptor inside HttpSessionListener

Posting Permissions