[jboss-dev-forums] Query regarding JBoss JCA

Adrian Brock abrock at redhat.com
Fri Jul 25 05:16:22 EDT 2008 

This is the mailing list for the jboss development forums.

Use the user forums. in your case since this is really
a security question (credential caching) here:

http://www.jboss.com/index.html?module=bb&op=viewforum&f=49

On Fri, 2008-07-25 at 09:08 +0530, priyanka.maheshwari at wipro.com wrote:
> Hi Everybody,
>  
> My Requirement:
> 1. Remove the usage of cleartext password from mysql-ds.xml 
> 2. Use the custom password manager to retrieve the password
>  
> Given Solution by extending the SecureIdentityLoginModule:
> JBoss connector API’s provides SecureIdentityLoginModule to encrypt
> database passwords rather than using clear text passwords in the
> datasource configuration. I have implemented a custom login module by
> extending this class and overridden the commit method, which will call
> password manager to retrieve the password.
>  
> Problem:
> By going thru the above approach of custom login module, JBoss JCA
> takes ~25 milliseconds to return the connection. And this 25
> milliseconds doesn't count the time to call password manager. But if I
> don't use cleartext password, it takes hardly 1 millisecond.
>  
> I want to understand:
> 1. How JCA works when login module is used which takes ~25
> milliseconds.  
> 2. Is there any way I can configure JBoss JCA to verify the password
> only for the 1st time, and for the subsequent calls, it just returns
> the connection directly from connection pool to reduce the time taken
> to ~1 milliseconds.
>  
> Regards,
> Priyanka
> Please do not print this email unless it is absolutely necessary. 
> 
> The information contained in this electronic message and any
> attachments to this message are intended for the exclusive use of the
> addressee(s) and may contain proprietary, confidential or privileged
> information. If you are not the intended recipient, you should not
> disseminate, distribute or copy this e-mail. Please notify the sender
> immediately and destroy all copies of this message and any
> attachments. 
> 
> WARNING: Computer viruses can be transmitted via email. The recipient
> should check this email and any attachments for the presence of
> viruses. The company accepts no liability for any damage caused by any
> virus transmitted by this email. 
> 
> www.wipro.com
> 
> _______________________________________________
> jboss-dev-forums mailing list
> jboss-dev-forums at lists.jboss.org
> https://lists.jboss.org/mailman/listinfo/jboss-dev-forums
-- 
xxxxxxxxxxxxxxxxxxxxxxxxxxxx
Adrian Brock
Chief Scientist
JBoss, a division of Red Hat
xxxxxxxxxxxxxxxxxxxxxxxxxxxx

More information about the jboss-dev-forums mailing list