Investigate allowing direct injection of HttpClientSecurityParameters into HttpResource
Basics
Logistics
Basics
Logistics
Description
The HttpResource allows the HttpContext to be garnished via an injected HttpClientContextHandler
The IdP's HttpCleintFactory leverages this to allow find grained control.
There has been some discussion about allowing a mid-way between nothing and the fine grain by allowing injection of HttpClientSecurityParameters via a setter.
This would allow applications that cared to leverage the -hs qualifier to the {{AbstractIdPHomeAwareCommandLineArguments}} directly (rather than relying on the Client factory.
I'm capturing this so I don't forget, but marking it for a long way out.
Environment
None
Activity
Rod Widdowson October 25, 2022 at 12:23 PM
This whole area is in flux. We can reopen this if it seems sensible
The HttpResource allows the HttpContext to be garnished via an injected
HttpClientContextHandlerThe IdP's HttpCleintFactory leverages this to allow find grained control.
There has been some discussion about allowing a mid-way between nothing and the fine grain by allowing injection of HttpClientSecurityParameters via a setter.
This would allow applications that cared to leverage the
-hsqualifier to the {{AbstractIdPHomeAwareCommandLineArguments}} directly (rather than relying on the Client factory.I'm capturing this so I don't forget, but marking it for a long way out.