[NXP-6255] Use Signed Fetch between Shindig and Nuxeo - Nuxeo Issue Tracker

XML

Word

Printable

Details

Type: Improvement
Status: Resolved
Priority: Minor
Resolution: Fixed
Affects Version/s: 5.4.0.1
Fix Version/s: 5.4.2-RC1, 5.4.2
Component/s: Dashboard / OpenSocial (deprecated)

Impact type:

API change

Description

When Shindig fetches some data from Nuxeo it currently use a "hack" to propagate JSESSIONID.
The correct solution is to use Signed Fetched between Shindig and Nuxeo.
For security reason, the shared key will be shared in memory and dynamically generated at startup time.

Attachments

Activity

People

Assignee:

Thierry Delprat

Reporter:

Thierry Delprat

Participants:

Anahide Tchertchian, Thierry Delprat

Votes:

0 Vote for this issue

Watchers:

0 Start watching this issue

Dates

Created:

2011-01-25 13:54

Updated:

2011-05-17 09:29

Resolved:

2011-01-25 15:07