cgriffith, I would like my web app to get the usernames from JAAS, so that no matter what the policy in use at the time the web app is running, it will use whatever policy is set. If I do what you said, and create a layer between the app and LDAP, I'm still going directly to LDAP. That's what I'm trying to avoid. The layer that you're suggesting I create is already there -- JAAS. I just don't know if I can use it that way, and the seaching I've done on Google hasn't really shed any light.
Even creating EJBs seems to be the wrong answer. I don't know EJB at all, but I am guessing that I would have to create a different set of EJBs for LDAP, file-based, and database user stores -- along with any other way that admins would want to store their users' accounts. This seems like a bad idea, and not very efficient. JAAS already has the ability to access a large set of resources for athenticating/authorizing user accounts, so I would think I could tap into JAAS to get my userlist. I'll keep looking, but if you think I'm way off-base on this let me know. Like I said, I am new to all this stuff, so I wouldn't be surprised if I'm not getting the whole picture... - Jeff View the original post : http://www.jboss.com/index.html?module=bb&op=viewtopic&p=3942998#3942998 Reply to the post : http://www.jboss.com/index.html?module=bb&op=posting&mode=reply&p=3942998 ------------------------------------------------------- Using Tomcat but need to do more? Need to support web services, security? Get stuff done quickly with pre-integrated technology to make your job easier Download IBM WebSphere Application Server v.1.0.1 based on Apache Geronimo http://sel.as-us.falkag.net/sel?cmd=lnk&kid=120709&bid=263057&dat=121642 _______________________________________________ JBoss-user mailing list JBoss-user@lists.sourceforge.net https://lists.sourceforge.net/lists/listinfo/jboss-user
