Menu
▾
▴
[JBoss-user] JAAS login - updating the SRP cache
|
From: Sebastian H. <seb...@sk...> - 2003-06-16 21:53:55
|
Hi,
I have a question regarding the SRP cache. I have a server side JAAS
login config which right now looks like this:
<application-policy name=3D"beans">
<authentication>
<login-module
code=3D"org.jboss.security.srp.jaas.SRPCacheLoginModule" =
flag=3D"requisite">
<module-option
name=3D"cacheJndiName">xenon/AuthenticationCache</module-option>
</login-module>
<login-module
code=3D"com.sknt.picasso.security.jaas.PicassoRolesLoginModule"
flag=3D"required">
<module-option
name=3D"password-stacking">useFirstPass</module-option>
</login-module>
</authentication>
</application-policy>
<application-policy name=3D"web-app">
<authentication>
<login-module
code=3D"com.sknt.picasso.security.jaas.PicassoAuthenticationLoginModule"
flag=3D"requisite">
</login-module>
<login-module
code=3D"com.sknt.picasso.security.jaas.PicassoRolesLoginModule"
flag=3D"required">
<module-option
name=3D"password-stacking">useFirstPass</module-option>
</login-module>
</authentication>
</application-policy>
Basically I have an application policy I want to use to secure my bean
access. Because I am using SRP to authenticate the users of a
standalone java application I want to make use of the SRP cache to speed
things up while checking the credentials of a bean caller.
So far so good, but now I also have a web application I need to secure.
Therefore the second application policy "web-app". The web application
will make bean calls as well, which will fail because my custom login
module "PicassoAuthenticationLoginModule" does not know how to update
the SRP cache.
I assume I have to somehow call the SRP service and tell it to update
the cache. But before I dig into the JBoss code and try to figure out
how this is done I want to know if this is "the way to do it" (TM) or if
there is something I forgot.
Regards,
Sebastian
|