Richard Unger wrote:
Quoting Unico Hommes <[EMAIL PROTECTED]>:
Oliver Zeigermann wrote:
Unico Hommes wrote:
Oliver Zeigermann wrote:-> Either each containser needs a wrapper to access the users Or -> container based authentication is dropped, and security has to be handled by slide
I've been looking into JAAS LoginModule functionality and noticed that both Jetty and Tomcat provide JAAS adapters for their respective realms. I have to look into it more - especially regarding callback mechanism - but it may be the container agnostic way of providing container managed authentication.
I have noticed this before, but had no chance to get into the details. Still, I really like this idea... If you get the chance to have a closer look at it, please tell us about it :)
There is one thing to consider though: Large computing environments typically will already have established user structures stored in LDAP or databases. Portal servers and reverse proxies use authentication tokens to pass logins around clusters of servers, and this requires container based authentication. Can we drop compatibility with all that?
IIUC, not so. Write a LDAP/DB/etc Slide store implementation and define it to match /users scope.
Nice idea :) Maybe this is the way to go?
Oliver
--------------------------------------------------------------------- To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
