Thursday, June 24, 2004
Cocoon's authentication framework
Welp, I decided to stop beating around the bush and take a shot at figuring out how the hell to do authentication in Cocoon.
As it turns out, it's yet another beautifully designed system that just needs documentation. OBVIOUSLY, if you want to access context data from FlowScript, you'll execute
Other than that, the architecture for protecting documents seems really neat and flexible. With minimal effort, I should be able to (a) authenticate across three different data sources and (b) generate customized output based on which class of user is logged in. Quite spiffy.
As it turns out, it's yet another beautifully designed system that just needs documentation. OBVIOUSLY, if you want to access context data from FlowScript, you'll execute
cocoon.session.getAttribute("org.apache.cocoon.webapps.authentication.components.DefaultAuthenticationManager/UserStatus").getHandler("loginhandler").getContext().getContextInfo()
. I'm shamed to say this wasn't the first thing to pop into my mind.
Other than that, the architecture for protecting documents seems really neat and flexible. With minimal effort, I should be able to (a) authenticate across three different data sources and (b) generate customized output based on which class of user is logged in. Quite spiffy.