[jboss-user] [Security & JAAS/JBoss] - RoleMappingLoginModule with rule: *=role1, role2

fcorneli do-not-reply at jboss.com
Wed Nov 15 13:15:58 EST 2006


RoleMappingLoginModule makes sense when the user already has a (JAAS JBoss specific) role. The funny thing here is that, before your are capable of using RoleMappingLoginModule, the user already must have a (JAAS JBoss specific) role assigned by a login module. Thus the initial JAAS LoginModule already needs to be JBoss-aware (because of the role replacement by RoleMappingLoginModule).

How can I add a role to an authenticated user when he/she has been authenticated by a generic JAAS (i.e. non-JBoss aware) login module? I don't want to pollute my generic JAAS login module with JBoss specific stuff (the 'Roles' group thingy).

View the original post : http://www.jboss.com/index.html?module=bb&op=viewtopic&p=3986256#3986256

Reply to the post : http://www.jboss.com/index.html?module=bb&op=posting&mode=reply&p=3986256



More information about the jboss-user mailing list