smbd,
Thanks for trying to be more clear about your situation. However, I am still
having trouble. You still have told us very little about your client and the
login-config of server. So let me try to repeat the situation back to you to
see if I understand.
First though, I want to point out that you could have used ClientLoginModule in
your situation if you used the useFirstPass configuration and passed the object
throught the shared state. In this situation you can use an Object as the
credentials.
O.K. so ...
1.)A user attempts to use the client application (or some restricted aspect of
the application) and the client discovers that the user has not authenticated
yet.
2.) The client uses JAAS configured with a custom LoginModule I'll call LM_A to
get the users fingerprint and authenticate the fingerprint.
3.)However during this process, LM_A must access a secured EJB.
Is this correct so far? If so, how is LM_A authenticated with JBoss?
At this point things start to get fuzzy from your description.
4.) Assume step 3 was successfull, user has now authenticated themselves to the
client only.
5.)Then the client must access JBoss AS in order to fullfill orginal task in
step #1
6.) The client then needs to authenticate itself with JBoss server.
How is this happing for you? Some credential must be sent.
7.) Assume #6 magically happens and JBoss caches the credentials sent in step #6
8.) Then JBoss performs task and returns result to client.
Again things become unclear from your description.
9.) User attempts to perform the same task, however you say that the
fingerprint credential is different. Unless you are aquiring a whole new
version of the fingerprint credential, how has it changed. Shouldn't your
client cache the fingerprint during step during step #4?
Please try again, and be more clear about what happens at each stage. Also,
TRACE logging would be nice.
cgriffith
View the original post :
http://www.jboss.com/index.html?module=bb&op=viewtopic&p=3924329#3924329
Reply to the post :
http://www.jboss.com/index.html?module=bb&op=posting&mode=reply&p=3924329
-------------------------------------------------------
This SF.net email is sponsored by: Splunk Inc. Do you grep through log files
for problems? Stop! Download the new AJAX search engine that makes
searching your log files as easy as surfing the web. DOWNLOAD SPLUNK!
http://sel.as-us.falkag.net/sel?cmd=lnk&kid=103432&bid=230486&dat=121642
_______________________________________________
JBoss-user mailing list
[email protected]
https://lists.sourceforge.net/lists/listinfo/jboss-user
