[jboss-user] [Security & JAAS/JBoss] - Custom Principal classes and EJBContext.getCallerPrincipal()

Monday, 8 October 2007

Hi,

I'm creating a custom JAAS authentication module, by extending
AbstractServerLoginModule, to integrate in a EJB 3.0 layer. During authentication, I
assign objects to the user's Subject that are instances of custom Principal classes I
wrote to represent users and roles in my system. It works fine, and I can retrive the
authenticated Subject with the right objects by calling SecurityAssociation.getSubject()
from my EJB's.

However, using injected EJBContext instances, the method getCallerPrincipal() always
returns an instance of SimplePrincipal, which contains only the username. 
Is there a way to get this method to return the same Principal object reference that was
assigned to the Subject during authentication?

Thanks in advance.

View the original post :
http://www.jboss.com/index.html?module=bb&op=viewtopic&p=4092763#...

Reply to the post :
http://www.jboss.com/index.html?module=bb&op=posting&mode=reply&a...

2026

2025

2024

2023

2022

2021

2020

2019

2018

2017

2016

2015

2014

2013

2012

2011

2010

2009

2008

2007

2006

[jboss-user] [Security & JAAS/JBoss] - Custom Principal classes and EJBContext.getCallerPrincipal()