Update the JAAS login module base class password mapping options ---------------------------------------------------------------- Key: JBAS-1553 URL: http://jira.jboss.com/jira/browse/JBAS-1553 Project: JBoss Application Server Issue Type: Feature Request Security Level: Public(Everyone can see) Components: Security Affects Versions: JBossAS-3.2.7 Final, JBossAS-4.0.1 Final Reporter: Scott M Stark Fix For: JBossAS-4.0.6.CR1 Currently we support a simple notion of only having the first login module perform authentication with all other login modules bypassing authentication when the password-stacking=useFirstPass We need to update the base login modules that support most of the options from the jaas developer guide: * try_first_pass - If true, the first LoginModule in the stack saves the password entered, and subsequent LoginModules also try to use it. If authentication fails, the LoginModules prompt for a new password and retry the authentication. * use_first_pass - If true, the first LoginModule in the stack saves the password entered, and subsequent LoginModules also try to use it. LoginModules do not prompt for a new password if authentication fails (authentication simply fails). * try_mapped_pass - If true, the first LoginModule in the stack saves the password entered, and subsequent LoginModules attempt to map it into their service-specific password. If authentication fails, the LoginModules prompt for a new password and retry the authentication. * use_mapped_pass - If true, the first LoginModule in the stack saves the password entered, and subsequent LoginModules attempt to map it into their service-specific password. LoginModules do not prompt for a new password if authentication fails (authentication simply fails). * moduleBanner - If true, then when invoking the CallbackHandler, the LoginModule provides a TextOutputCallback as the first Callback, which describes the LoginModule performing the authentication.