|
All,
Having run into this same issue myself, I am
wondering about the feasibility of developing a JBossRealm (or similiar) for
Tomcat that actually authenticates against the JBoss
security configuration. It seems to me that this would actually then
be "integrated" security, versus the dual configuration that is needed
now. For instance, SimpleRealm or JDBC Realm would no longer be
needed. Their functionality would be
replaced by a JBossRealm (or JBossRealmAuthenticate) module
that authenticates the user in Tomcat. One huge advantage to this
approach would be that we would be able to use any JBoss security configuration
(which is nice and extensible) from Tomcat, versus just the JDBC and
XML file capabilities currently available in Tomcat.
Is there something fundamental that is preventing
this from working, or that makes it a bad idea?
Thanks,
Scott
>Correct.
> >----- Original Message ----- >From: "Ijonas Kisselbach" <[EMAIL PROTECTED]> >To: <[EMAIL PROTECTED]> >Sent: Thursday, April 19, 2001 11:44 AM >Subject: Re: [JBoss-user] JBoss 2.2: Servlet Authentication against JBoss realms. How ? > > >> So let me get this right. >> >> First I authenticate within Tomcat, using the usual means.... This then sets >> ups credentials which will be passed onto JBoss for further handling. >> >> But always authenticate in Tomcat first... ?? >> >> This makes sense if this is the case. Can you confirm ? >> >> Cheers, >> Ijonas. |
- [JBoss-user] JBoss 2.2: Servlet Authentication against J... Ijonas Kisselbach
- Re: [JBoss-user] JBoss 2.2: Servlet Authentication ... Scott M Stark
- Re: [JBoss-user] JBoss 2.2: Servlet Authenticat... Ijonas Kisselbach
- Re: [JBoss-user] JBoss 2.2: Servlet Authent... Scott M Stark
- Re: [JBoss-user] JBoss 2.2: Servlet Authentication ... Scott Hasse
- Re: [JBoss-user] JBoss 2.2: Servlet Authenticat... Scott M Stark
