I am trying to allow a login using an X509 Certificate as a credential. My login module uses an ObjectCallback to retrieve the certificate.
All is fine and dandy if I do something like this:
String domain = authMgr.getSecurityDomain();
ObjectCallbackHandler och = new ObjectCallbackHandler(cert); // use my own callback handler
LoginContext lc = new LoginContext(domain, och);
lc.login();
but further on down the road (mere milliseconds later actually) when the JaasSecurityManager attempts to call its isValid(Principal, Object) method, the SecurityAssiciationHandler (used in the private defaultLogin() method) chokes on the callback.
I am storing the credential (certificate) in SecurityAssociation, which allows any object to be held as a credential.
Do I need to extend the JaasSecurityManager (actually JaasSecurityDomain) to be able to properly verify ( isValid() ) this type of credential, or am I making things more difficult than they should be?
Thanks
-jason
- Re: [JBoss-dev] authenticating using a non-text credential... Jason Essington
- Re: [JBoss-dev] authenticating using a non-text crede... Scott M Stark
- Re: [JBoss-dev] authenticating using a non-text c... Jason Essington
- Re: [JBoss-dev] authenticating using a non-te... Scott M Stark
- Re: [JBoss-dev] authenticating using a no... Jason Essington
- [JBoss-dev] JaasSecurityDomain break... Jason Essington
- Re: [JBoss-dev] authenticating using... Scott M Stark
- Re: [JBoss-dev] authenticating u... Jason Essington
- Re: [JBoss-dev] authenticati... Scott M Stark
- Re: [JBoss-dev] authenticati... Jason Essington
- Re: [JBoss-dev] authenticati... Scott M Stark
