Disable/ignore Auth basic on a Web Service

juju0034 Jun 13, 2017 3:31 AM

Hello All,

We have our application that acts like an authentication soft. Basically, we need to handle the basic authentication on our own. To wit, we need the app/web server to ignore completely the HTTP header "authorization".

On Weblogic, we use a configuration called "enforce-valid-basic-auth-credentials", that when false, simply tells Weblogic to let go any basic auth credential without verifying it (which allows our app to handle it afterward).

Is there a way to achieve this in Wildfly 10 ?

Thank you very much for the help.

1. Re: Disable/ignore Auth basic on a Web Service

mchoma Jun 15, 2017 12:03 PM (in response to juju0034)

So you want to keep BASIC authentication mechanism in web.xml ( make server to send BASIC challange in first response) , but do not want server to process next request from client?

You should be able to define custom authentication mechanism [1] and probably also override existing one .

[1] How to implement custom Authentication Mechanisms on EAP 7 - Red Hat Customer Portal
Actions