[Security & JAAS/JBoss] - Re: how to disable password-stacking property - jboss-user

Thursday, 14 December 2006

Hi,

I have removed that option in my login-config.xml
Now my login-config.xml is like this.
<?xml version='1.0'?>
  | <!DOCTYPE policy PUBLIC
  |       "-//JBoss//DTD JBOSS Security Config 3.0//EN"
  |       "http://www.jboss.org/j2ee/dtd/security_config.dtd">
  | <policy>
  |    <!-- For the JCR CMS -->
  |    <application-policy name="cms">
  |       <authentication>
  |          <login-module
code="org.apache.jackrabbit.core.security.SimpleLoginModule"
flag="required"/>
  |       </authentication>
  |    </application-policy>
  |    
  |    <application-policy name="portal">
  |       <authentication>
  |          <login-module code="com.tsky.customlogin.CustomLoginModule"
flag="required">
  |             <module-option
name="unauthenticatedIdentity">guest</module-option>
  |             <module-option
name="userModuleJNDIName">java:/portal/UserModule</module-option>
  |             <module-option
name="roleModuleJNDIName">java:/portal/RoleModule</module-option>
  |             <module-option
name="additionalRole">Authenticated</module-option>
  |          </login-module>
  |       </authentication>
  |    </application-policy>
  | </policy>

It is still caching the username and passwords.  I want it to go to CustomLoginModule each
time. 
Can anyone help me out in this?

View the original post :
http://www.jboss.com/index.html?module=bb&op=viewtopic&p=3993707#...

Reply to the post :
http://www.jboss.com/index.html?module=bb&op=posting&mode=reply&a...

2026

2025

2024

2023

2022

2021

2020

2019

2018

2017

2016

2015

2014

2013

2012

2011

2010

2009

2008

2007

2006

[Security & JAAS/JBoss] - Re: how to disable password-stacking property