I have a client Java application running against JBOSS 3.2.3. This application can accept requests from different users, each request is handled using its own dedicated Java thread.
As part of each request, the user supplies their credentials (username and password) which are to be authenticated by JBOSS using JAAS in order to control access to J2EE resources (e.g. EJBs). Multiple requests must be handled concurrently (i.e. different users can make calls on different threads running at the same time). Without support for Subject.doAs() in JBOSS, I can't see how I can establish multiple calling identities simultaneously within the same client application. It appears to me that once I have called LoginContext.login() in the application then all threads implictly assume that authenticated identity until either LoginContext.login is called again or LoginContext.logout() is called. This multithreaded, multi-user approach has worked fine on other AppServers (e.g. WebSphere) that support Subject.doAs(). Any help/advice gratefully received, as this is a major block for adoption of JBOSS on my project. Thanks Alan View the original post : http://www.jboss.org/index.html?module=bb&op=viewtopic&p=3851314#3851314 Reply to the post : http://www.jboss.org/index.html?module=bb&op=posting&mode=reply&p=3851314 ------------------------------------------------------- This SF.net email is sponsored by: IT Product Guide on ITManagersJournal Use IT products in your business? Tell us what you think of them. Give us Your Opinions, Get Free ThinkGeek Gift Certificates! Click to find out more http://productguide.itmanagersjournal.com/guidepromo.tmpl _______________________________________________ JBoss-user mailing list [EMAIL PROTECTED] https://lists.sourceforge.net/lists/listinfo/jboss-user
