Hi, I was asked recently if my Java web app could use unix PAM subsystem for authenticating users. The sys admins would like that because they control the authentication configuration that way. After looking for an answer I ended up finding Koshuke's libpam4j which uses JNA to talk to the system's libpam. The next logical step was to use this inside my favorite security library...
Since Shiro is so nice, it took like 5 minutes to write a Realm implementation that leverages libpam4j. The result is that you can use Shiro to authenticate users against the OS's mechanism (which in turn can authenticate against pretty much anything). I took the liberty to create an improvement in JIRA here: https://issues.apache.org/jira/browse/SHIRO-269 The realm implementation is available here: https://github.com/plaflamme/shiro-libpam4j Thanks to Les and Koshuke for writing their libs so nicely that it made writing this so trivial! Cheers, Philippe -- View this message in context: http://shiro-user.582556.n2.nabble.com/Shiro-Realm-for-Unix-PAM-tp6037285p6037285.html Sent from the Shiro User mailing list archive at Nabble.com.
