Raj M wrote:
David, Thanks. I guess I have my work cut out :). I was able to reuse my JAAS LoginModule with the login.conf, I stacked the J2 one and mine. It appears to work !. My only problem is, if the principal is not in the J2 DB, I get permission denied to the resource. Is there a quick configuration to assign 'guest' role/permission to authenticated non J2/DB principals?
Currently you have to write a custom security valve and create and add your own subject and the mock roles into the subject. Look at the default security valve as an example. If we could find a generalized way to get the Subject in a Jetspeed valve, but I don't know of one
--------------------------------------------------------------------- To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
