[jboss-user] [Security JAAS/JBoss] - Re: Multiple login modules - LDAP and DB failover
But if a user doesn't give any login information - he'll still be 'authenticated' because both are only marked as sufficient. View the original post : http://www.jboss.com/index.html?module=bbop=viewtopicp=4097166#4097166 Reply to the post : http://www.jboss.com/index.html?module=bbop=postingmode=replyp=4097166 ___ jboss-user mailing list jboss-user@lists.jboss.org https://lists.jboss.org/mailman/listinfo/jboss-user
[jboss-user] [Security JAAS/JBoss] - Re: Multiple login modules - LDAP and DB failover
Here: http://java.sun.com/j2se/1.5.0/docs/api/javax/security/auth/login/Configuration.html I read: If no Required or Requisite LoginModules are configured for an application, then at least one Sufficient or Optional LoginModule must succeed. But that's not what's happening - both are failing but the user is still able to login (authentication passes but then they cannot access the resources). View the original post : http://www.jboss.com/index.html?module=bbop=viewtopicp=4097169#4097169 Reply to the post : http://www.jboss.com/index.html?module=bbop=postingmode=replyp=4097169 ___ jboss-user mailing list jboss-user@lists.jboss.org https://lists.jboss.org/mailman/listinfo/jboss-user
[jboss-user] [Security JAAS/JBoss] - Re: Multiple login modules - LDAP and DB failover
In your login-config.xml you can create a policy with modules flagged sufficient. i do that to authenticate user on several LDAP: | authentication | login-module code=.. LoginModule | flag=sufficient | ... | /login-module | login-module code=.. LoginModule2 | flag=sufficient | ... | /login-module | | /authentication | /application-policy View the original post : http://www.jboss.com/index.html?module=bbop=viewtopicp=4082251#4082251 Reply to the post : http://www.jboss.com/index.html?module=bbop=postingmode=replyp=4082251 ___ jboss-user mailing list jboss-user@lists.jboss.org https://lists.jboss.org/mailman/listinfo/jboss-user
[jboss-user] [Security JAAS/JBoss] - Re: Multiple login modules - LDAP and DB failover
did you ever resolve this? I am trying to implement something similar. View the original post : http://www.jboss.com/index.html?module=bbop=viewtopicp=4079292#4079292 Reply to the post : http://www.jboss.com/index.html?module=bbop=postingmode=replyp=4079292 ___ jboss-user mailing list jboss-user@lists.jboss.org https://lists.jboss.org/mailman/listinfo/jboss-user
[jboss-user] [Security JAAS/JBoss] - Re: Multiple login modules - LDAP and DB failover
No not as yet, I still need to do it at some point though, so if you find anything let me know - and vice versa. View the original post : http://www.jboss.com/index.html?module=bbop=viewtopicp=4079296#4079296 Reply to the post : http://www.jboss.com/index.html?module=bbop=postingmode=replyp=4079296 ___ jboss-user mailing list jboss-user@lists.jboss.org https://lists.jboss.org/mailman/listinfo/jboss-user