我的书签
添加书签
移除书签Any engine-specific request will then be authenticated against that engine’s identity service. The GET request that supplies a list of all available process engines is the only request that does not require authentication. Any request that does not address a specific engine (i.e., it is not of the form /engine/{name}/…) will be authenticated against the default engine.
In the pre-built distributions, the engine authentication is switched off by default. You may have a look at the distribution’s file and remove the comment markers from the above mentioned filter declaration to activate authentication.
The authentication provider is exchangeable. You can implement the interface org.camunda.bpm.engine.rest.security.auth.AuthenticationProvider to provide another authentication method and change the filter’s initialization parameter accordingly.
RESTEasy Specifics
The authentication filter works fine whenever the JAX-RS application containing the REST API is deployed as a servlet. This is not necessarily the case. One such case we are aware of is with some types of RESTEasy deployments:
Example: If the RESTEasy configuration is
the following init-param has to be set:
