All,
I have a web app that is deployed into Jboss 3.2 RC2 using an EAR file.
The entire app is mapped to a single security domain, with a custom
LoginModule defined for the domain. The Custom LoginModule interfaces
with a SecureID system to perform user authentication.
Logging into the protected portions of the Web App, using FORM-based
authentication works fine. However, whenever the first call to the EJB
layer is invoked, the EJB layer calls my Custom LoginModule again. This
fails since the credentials are no longer valid, since the SecureID
value provided has expired. How do I get the Web tier to authenticate
to the EJB tier and prevent the EJB layer calling the Login Module
again?
--
Marc
-------------------------------------------------------
This SF.net email is sponsored by: Does your code think in ink?
You could win a Tablet PC. Get a free Tablet PC hat just for playing.
What are you waiting for?
http://ads.sourceforge.net/cgi-bin/redirect.pl?micr5043en
_______________________________________________
JBoss-user mailing list
[EMAIL PROTECTED]
https://lists.sourceforge.net/lists/listinfo/jboss-user
