1.Return type. SecurityContext is implemented by security plugin developers, and we cannot make SecurityContext from SecuritySubject. But GridSecurityProcessor#authorize method requires SecurityContext as parameter.
2. Method GridSecurityProcessor#authenticatedSubject returns authenticated *node subject* (from JavaDoc). It means we don't get a subject as a remote client using this method. GridSecurityProcessor#securityContext will not have this restriction. But I agree with you interface GridSecurityProcessor is too tricky. We could do a reworking of this interface for the 3.0 version of Ignite. ср, 11 мар. 2020 г. в 14:06, VeenaMithare <v.mith...@cmcmarkets.com>: > Hi Denis, > > Thank you for working on the security issues w.r.to thin client logins . > We > plan to use the thin clients extensively in our project , it will really > help if the blockers around it are resolved, > > regards, > Veena. > > > > -- > Sent from: http://apache-ignite-developers.2346864.n4.nabble.com/ >
