Fork me on GitHub
#pedestal
<
2017-06-15
>
jfntn20:06:41

I’m looking at the gzip sample for jetty and wondering if there are similar examples for immutant?

ddeaguiar20:06:50

not that I’m aware of

jfntn20:06:14

@ddeaguiar hmm would it be a bad idea to handle the codec in an interceptor as opposed to the servlet container in the jetty example?

ddeaguiar20:06:50

I can’t think of why that would be a bad idea. I think the idea is to leverage servlet filters when available

ddeaguiar20:06:20

basically, don’t reinvent the wheel

ddeaguiar20:06:45

but I’m not familiar with Immutant so I don’t know what it provides

ddeaguiar20:06:27

But it looks like Undertow has a Gzip handler. not sure how that would be wired in but I bet it’s a variation of what’s done for jetty

jfntn20:06:22

I’m just not familiar with the container model, so I was wondering if there would be downsides to doing the work “in” the handler rather than using the container, esp. wrt threading

shaun-mahood20:06:44

Has anyone hooked pedestal to Office365 for authentication? Or know any good resources to start looking at?

ddeaguiar21:06:29

@shaun-mahood no experience with Office365 but here are the auth/authz libs I recommend looking into https://github.com/propan/geheimtur and https://github.com/funcool/buddy

ddeaguiar21:06:09

and here’s a PR that’s in review which demonstrates Pedestal + Buddy integration: https://github.com/pedestal/pedestal/pull/503

shaun-mahood21:06:40

@ddeaguiar: great, thanks - I've tried buddy in the past but I don't think I'm smart enough, great to know geheintur is a valid option - I found a half-dozen libraries that look like they are no longer maintained and really don't like picking poorly for security libraries :)

ddeaguiar21:06:00

@shaun-mahood I’ve used both and I currently prefer Buddy because it’s quite flexible

ddeaguiar21:06:06

but it requires more setup

ddeaguiar21:06:35

well flexible is not the right word

ddeaguiar21:06:45

it just provides more utilities

ddeaguiar21:06:49

both are flexible

ddeaguiar21:06:02

either should work for you

shaun-mahood21:06:02

@ddeaguiar: Well, I think that PR will help a lot, so thanks for that! For whatever reason securing web apps is one of those things that I always have trouble with. I've ended up leaving a bunch of stuff in older systems when I really want it in Clojure.