[jboss-user] [Security & JAAS/JBoss] - Using

Wednesday, 3 December 2008

Is there any way to use the "unauthenticatedIdentity" feature of
"login-config.xml" for secured web applications?

I have a form based authentication, and even if I enter nothing in
"j_username"/"j_password", this empty input seems to be interpreted as
zero string login/password, but not as empty login.

For application clients, the NULL login works fine:
      AppCallbackHandler callbackHandler = new AppCallbackHandler(null, null);
  |       LoginContext loginContext = new LoginContext ("my_auth_conf",
callbackHandler);
  |       loginContext.login();

Thanks

Wolfgang

View the original post :
http://www.jboss.com/index.html?module=bb&op=viewtopic&p=4194144#...

Reply to the post :
http://www.jboss.com/index.html?module=bb&op=posting&mode=reply&a...

2026

2025

2024

2023

2022

2021

2020

2019

2018

2017

2016

2015

2014

2013

2012

2011

2010

2009

2008

2007

2006

[jboss-user] [Security & JAAS/JBoss] - Using