Hi,
Im just starting to use the Jaas SecurityManager in my app.
(JBoss-2.2.2_Jetty-3.1.RC5 release).
Im using the DatabaseServerLoginModule, and it works quite well.
When i go to my app in the browser i get the login screen, and
username and password gets verified. This principal data is used
According to servlet spec 2.2. The username is j_username and password
is j_password. On tomcat this saved to user session with same name. I
guess jetty does the same thing, I do not know. I have not used jetty.
On log out you can do like response.sendError(401,"blabla"). That should
redirect to l
> Im using the DatabaseServerLoginModule, and it works
> quite well.
> When i go to my app in the browser i get the login
> screen, and
> username and password gets verified. This principal
> data is used
> by jBoss to verify access on my EJBs, great!
>
> Now i would like to save the name of th
> Im using the DatabaseServerLoginModule, and it works
> quite well.
> When i go to my app in the browser i get the login
> screen, and
> username and password gets verified. This principal
> data is used
> by jBoss to verify access on my EJBs, great!
>
> Now i would like to save the name of th
> Im using the DatabaseServerLoginModule, and it works
> quite well.
> When i go to my app in the browser i get the login
> screen, and
> username and password gets verified. This principal
> data is used
> by jBoss to verify access on my EJBs, great!
>
> Now i would like to save the name of th
> Im using the DatabaseServerLoginModule, and it works
> quite well.
> When i go to my app in the browser i get the login
> screen, and
> username and password gets verified. This principal
> data is used
> by jBoss to verify access on my EJBs, great!
>
> Now i would like to save the name of th
nd pass? hm...
^terp
> -Original Message-
> From: [EMAIL PROTECTED]
> [mailto:[EMAIL PROTECTED]]On Behalf Of awc
> Sent: Sunday, July 01, 2001 11:56 PM
> To: [EMAIL PROTECTED]
> Subject: Re: [JBoss-user] JAAS Security question - Getting
> pricipaldata...
>
>
>
Hi,
Thanks for replying...
> This thema is in deed very confusing. Here my 2 cents
> ( though I use it with tomcat )
lol, glad to hear that, im going nuts here :-)
> To be able to verify user in ejb, you need to set
> security context in bean descriptor
> ( jboss.xml )
Did that, seems to wo
I am sorry, I was not very clear. OK. I do not know about jetty. I will be tomcat
specific. first you have to force your servlet engine to authticate your
window/browser, that will force you to enter username and password. After that,
it will save j_username and j_password and link you have requ
--- Torsten Terp <[EMAIL PROTECTED]> wrote:
> Hi,
>
> Thanks for replying Are you saying that the
> session should
> have attributes j_username ans j_password? Doing a
> session.getAttributeNames()
> reveals none?! I have also tried
> HttpSevletRequest.getRemoteUser() and
> HttpSevletRequest
> > This thema is in deed very confusing. Here my 2
> cents
> > ( though I use it with tomcat )
>
> lol, glad to hear that, im going nuts here :-)
Happened to me too... :) But 2 weekends of code diving
( recompiling security stuff myself with adding a LOT
of debug output to trace calls helped..
11 matches
Mail list logo
