From: Sebastian H. <seb...@sk...> - 2003-06-16 21:53:55
|
Hi, I have a question regarding the SRP cache. I have a server side JAAS login config which right now looks like this: <application-policy name=3D"beans"> <authentication> <login-module code=3D"org.jboss.security.srp.jaas.SRPCacheLoginModule" = flag=3D"requisite"> <module-option name=3D"cacheJndiName">xenon/AuthenticationCache</module-option> </login-module> <login-module code=3D"com.sknt.picasso.security.jaas.PicassoRolesLoginModule" flag=3D"required"> <module-option name=3D"password-stacking">useFirstPass</module-option> </login-module> </authentication> </application-policy> <application-policy name=3D"web-app"> <authentication> <login-module code=3D"com.sknt.picasso.security.jaas.PicassoAuthenticationLoginModule" flag=3D"requisite"> </login-module> <login-module code=3D"com.sknt.picasso.security.jaas.PicassoRolesLoginModule" flag=3D"required"> <module-option name=3D"password-stacking">useFirstPass</module-option> </login-module> </authentication> </application-policy> Basically I have an application policy I want to use to secure my bean access. Because I am using SRP to authenticate the users of a standalone java application I want to make use of the SRP cache to speed things up while checking the credentials of a bean caller. So far so good, but now I also have a web application I need to secure. Therefore the second application policy "web-app". The web application will make bean calls as well, which will fail because my custom login module "PicassoAuthenticationLoginModule" does not know how to update the SRP cache. I assume I have to somehow call the SRP service and tell it to update the cache. But before I dig into the JBoss code and try to figure out how this is done I want to know if this is "the way to do it" (TM) or if there is something I forgot. Regards, Sebastian |