User Close

Search

THE DEVELOPER PORTAL FOR SOA

Dangerous or safe to use OpenID as contain managed security

carlparziale's picture

Submitted by carlparziale on April 24, 2009 - 22:27

I'm curious. What are the pros/cons to using OpenID provider in this manner? It seems elegant, but since it doesn't appear to be a well documented Architecture pattern (can't find a lot of references on Web), I'm concerned about the approach for a high volume Web facing consumer application. In particular in TomCat using the example posted at http://blog.facilelogin.com/2008/11/openid-authenticator-for-tomcat.html Any additional information available that I may have missed? Thoughts? Opinions?

Bookmark/Search this post with:

prabathsiriwardena's picture

Tomcat OpenID Authenticator

Submitted by prabathsiriwardena on June 29, 2009 - 15:43.

Tomcat OpenID Authenticator mentioned in your reference adds OpenID authentication to your web app at the container level - and still the web app decides which level of security it requires.

Thanks & regards.
-Prabath

Login or register to post comments

Popular Content

Developing Web Services Using Apache Axis2 Eclipse Plugins - Part 1 (315456 reads)
How to Embed an Axis2 based Web Service in your Webapp? (68364 reads)
Hello World with Apache Axis2 (68007 reads)
Downloading a Binary File from a Web Service using Axis2 and SOAP with Attachments (61079 reads)
Developing Web Services Using Apache Axis2 Eclipse Plugins - Part 2 (59883 reads)
Reference Guide to Apache Axis2 Client API Parameters (54709 reads)
Writing Your Own services.xml for Axis2 Web Services (54324 reads)
Web Services Security with Apache Rampart – Part 1 ( Transport Level Security ) (53781 reads)

Featured

Enterprises are inherently complex, comprising of hundreds of applications with completely different semantics. Some of these applications are custom built, where as some are acquired from third parties and some even can be a combination of both and they can be operating in different system environments.

WSO2 VMware Images helps you to try our products inside your virtualized environments without having to go through the trouble of installation and configuration. Download an image and get your hands on cutting edge, lightweight SOA middleware right away!

WSO2 Governance Registry is a product from WSO2 that facilitates you to govern the SOA platform of your organization by helping you store and manage SOA meta data. The product is free and open source with Apache licence and you can download it from http://wso2.org/projects/governance-registry

Hot Topic

Hot

Topic

Google Gadgets are a nice way to develop user interfaces for distributed services. The fact that they can be hosted anywhere over a network, not necessarily in the very portal server they eventually run in makes them re-usable and allows users to quickly...

Latest Webinar

In this webinar we'll share the range of concerns we've heard from the industry, and survey some of the new and sometimes subtle types of lock-in associated with cloud technologies.

Wednesday, 8 September, 10.00 AM (PDT)

Tags

WS-ReliableMessaging transports transformation Web services WS-Policy WS-Eventing WS-Trust WS-Security WS-Policy WS-*