Hi Experts, In our new web application we are trying to accomplish the following:
Authentication (login) should be done using a RADIUS server. Currently, we are thinking of using JAAS and another open source library "Java Radius Client" (http://jradius-client.sourceforge.net/) that provides a RDIUS LoginHandler for JAAS. However, this RADIUS server will not provide any additional user information to fill in the UserDetails object, especially it does not provide any GrantedAuthority. In order to accomplish this, the requirement is to put this information in simple tables inside the application database (very similar to the proposed sample SQL schema). Now my question is: what would be the best practice to accomplish this? I have a rough idea by overwriting the JaasAuthenticationProvider and adding code to read the AuthorityGranters from the database and possibly replace the authenticated Principal with the one retrieved from the DB. However, I was wondering if there would be a better, more elegant way without having to modify Acegi code. I suspect this is not such an unusual requirement and someone else might have solved it already. Thanks for any answers, -Uli P.S. As you might have gathered already, I am fairly new to Acegi, so bear with me if my question does not make too much sense. -- =========================================== Ulrich Romahn Optaros, Inc. www.optaros.com 333 Bryant Street - Suite 110 San Francisco, CA 94107 Corporate Headquarter: 60 Canal Street - 4th Floor Boston, MA 02114 cell: +1 (650) 430-4499 voice: +1 (617) 227-1855 x129 fax: +1 (650) 570-7449 =========================================== ------------------------------------------------------------------------- Take Surveys. Earn Cash. Influence the Future of IT Join SourceForge.net's Techsay panel and you'll get the chance to share your opinions on IT & business topics through brief surveys-and earn cash http://www.techsay.com/default.php?page=join.php&p=sourceforge&CID=DEVDEV _______________________________________________ Home: http://acegisecurity.org Acegisecurity-developer mailing list Acegisecurity-developer@lists.sourceforge.net https://lists.sourceforge.net/lists/listinfo/acegisecurity-developer
