I really need help on this. Maybe a litle background info helps you helping me :)
This question fits in the context of a project where the possibility of using a load balancer working as a SSL acelerator (aka "SSL offloader") is being weighted against the power to leverage J2EE native HTTP authentication mechanisms (basic/digest/form). This is a problem because all the load balancers I'm aware of authenticate and transfer the user identity (even the certificate itself) via proprietary mechanisms (eg. special HTTP headers). So since I'm not interested in programming a security infrastructure myself, I wandered whether JBoss highly modular architecture couldn't come to the rescue with some way of plugin-in an authentication mechanism recognized by the rest of the container's security infrastructure, so that after successfull authentication, it still enabled authorization via declarative specs. Any help whatsoever would be higly appreciated. Nuno View the original post : http://www.jboss.com/index.html?module=bb&op=viewtopic&p=3915819#3915819 Reply to the post : http://www.jboss.com/index.html?module=bb&op=posting&mode=reply&p=3915819 ------------------------------------------------------- This SF.net email is sponsored by: Splunk Inc. Do you grep through log files for problems? Stop! Download the new AJAX search engine that makes searching your log files as easy as surfing the web. DOWNLOAD SPLUNK! http://ads.osdn.com/?ad_id=7637&alloc_id=16865&op=click _______________________________________________ JBoss-user mailing list JBoss-user@lists.sourceforge.net https://lists.sourceforge.net/lists/listinfo/jboss-user