[jboss-as7-dev] security/web sucks, what can we change?

Darran Lofthouse darran.lofthouse at jboss.com
Fri Jun 17 12:09:11 EDT 2011


On 06/17/2011 05:07 PM, Bill Burke wrote:
>> You can already add any authenticator you like in your deployer (like if
>> you see JBOSS-SECURITY-DOMAIN in web.xml, you can add
>> JBossSecurityDomainAuthenticator), that's why you don't need to add some
>> nasty config like the one which existed in AS 6 to do it.
>>
>
> Ah, you mean write a deployer, listen for JbossWebMetaData, and add what
> you need to JbossWebMetaData?  Won't JBossWeb see the
> "JBOSS-SECURITY-DOMAIN" auth-method and barf?

Within my web application I can confirm it does not object to the 
non-standard auth-method.


More information about the jboss-as7-dev mailing list