We are using JAASRealm for authentication... What we would like to do is to 
gather additional information from the HttpRequest for use within our 
security framework... 
Having taken a look at the code it seems easy enough to add another method to 
the RealmBase to populate the Realm with the Request and Response as these 
two object are present within FormAuthenticator et al just before the call to 
context.getRealm().authenticate(user, password).... From there the JAASRealm 
or our own can be used to create a HttpCallBack for use by a JAAS 

Is there any reason that this is not done???

If there is no reason may I submit some code back to the project to handle 

thanks a mil


This email may contain information intended for the sole use of
the original recipient. Please respect this when sharing or
disclosing this email's contents with any third party. If you
believe you have received this email in error, please delete it
and notify the sender or [EMAIL PROTECTED] as
soon as possible. The content of this email does not necessarily
reflect the views of SolNet Solutions Ltd.

To unsubscribe, e-mail: [EMAIL PROTECTED]
For additional commands, e-mail: [EMAIL PROTECTED]

Reply via email to