Hi,
I'm trying to use cxf kerberos support in karaf container. all unit test and
standalone apps are working fine based on 3 system properties:
System.setProperty( "java.security.auth.login.config",
"/apps/krb5/jaas.conf");
System.setProperty( "java.security.krb5.realm", "MYCOMPANY.COM"));
System.setProperty( "java.security.krb5.kdc", "kdc.mycompany.com");
when I set these properties in karaf etc/system.properties (or karaf startup
using -D...) the container is not picking them up and am getting exception
as "No LoginModule found for my-context" ... looks to me a conflict between
JAAS and OSGI (no wonder ...)
I looked at Karaf examples and there are many jaas login modules for ldap,
jdbc, ... but there is nothing for kerberos. I was wondering if something
like this is possible:
<blueprint ...>
<jaas:config name="MyRealm">
<jaas:module
className="com.sun.security.auth.module.Krb5LoginModule" flags="required">
debug = true
useTicketCache = true
useKeyTab=true
keytab=/apps/krb5/server.keytab
principal=myserver/server1.mycompany.com
</jaas:module>
</jaas:config>
</blueprint>
I cannot find any example and was wondering if anyone can help. How can I
pass these three important data (login config, realm and kdc) to wss4j
KerberosTokenValidator?
Thanks,
Smkheir
--
View this message in context:
http://cxf.547215.n5.nabble.com/cxf-kerberos-karaf-blueprint-tp5749380.html
Sent from the cxf-user mailing list archive at Nabble.com.
