Thanks for the tips. I decided I don't mind implementing a jboss-specific class
for now and porting it later.
I read the docs and I think I understand how to extend
UsernamePasswordLoginModule. However I've never tried to integrate
authentication with a J2EE application server before, so I find
With JBoss, as part of your login module, if you want to specify what are the
roles of the user, you need to create a Group class instance (agree, it does
not need to be the one form JBoss) with a specific name (JBoss specific).
The fact that this Group instance with this specific name is used to
You can write your own JAAS login module and plug it into the
conf/login-config.xml file.
If you want complete portability ensure that you custom implement the Principal
and Group classes and dont use the ones from JBoss. I have done this
successfully. There is no issue with that.
Once you have
Unfortunately, not really.
The JAAS basic capabilities are common to all application server, but when
writing your own custom JAAS login modules, in order to fully integrate it with
the app server, you will have to write some app server specific code:
- If you want to specify what are the roles