Hi Edward,
Kenworthy, Edward wrote:
> Ok I now have it all working ! I've re-written the ServerLoginModule so that
> it reads usernames and passwords from one properties file and usernames and
> roles from another. Which is exactly what I need for client and bean
> development, as I won't have to modify them when I re-implement my
> ServerLoginModule to use the "real" security mechanism. (I still use
> setPublicCredential() to tie roles to Subjects but I think a role should
> really be a Principal - but I'll hold off on that as that would require a
> change to JaasSecurityManager.
Do you mean that SimplePrincipal should be replaces by some
JaasPrincipal, which would contain the set of roles?
I have no objections, but I'd like to know your reasoning.
> Would anyone be interested in my writing up what I did, including every
> useful tid-bit people have posted here plus what I learned doing it ?
Sure, any kind of docs of JAAS security in jBoss is appreciated.
Not sure who specifically will process it into the official docs, though.
Also, if you feel that your implementation of ServerLoginModule may be
useful for other people, you may wish to contribute it ;-)
Best regards,
Oleg
--
--------------------------------------------------------------
To subscribe: [EMAIL PROTECTED]
To unsubscribe: [EMAIL PROTECTED]
Problems?: [EMAIL PROTECTED]
