[jboss-user] [Security & JAAS/JBoss] - Re: SPNEGO Rich Client Support

Tuesday, 9 September 2008

Because i have written my own Kerberos based JAAS LoginModules (slient and serverside). 

Know i'am searching  a way to use the protected EJB's from a webUI. The EJB's
have to be protected by one security-domain which handles the rich-client invokes and
there (Kerberos based) authentication. But furthermore i need to invoke the same EJB's
by a webUI...and here i would use the SPNEGO implementation...but I don't how i could
implement an alternative JAAS authentication or security-domain for only one EJB.

My idea seems to me like following:
If the user use the WebUI, the authentification should be based on SPNEGO or maybe a
simple DB authentification. If the other Rich Clients invoke the EJB's the
authentification should be based on my own Kerberos authentification.

Are there any ideas? Or is there no way to protect one EJB with different alternative
security-domains?

View the original post :
http://www.jboss.com/index.html?module=bb&op=viewtopic&p=4175278#...

Reply to the post :
http://www.jboss.com/index.html?module=bb&op=posting&mode=reply&a...

2026

2025

2024

2023

2022

2021

2020

2019

2018

2017

2016

2015

2014

2013

2012

2011

2010

2009

2008

2007

2006

[jboss-user] [Security & JAAS/JBoss] - Re: SPNEGO Rich Client Support