[jboss-dev-forums] [Design of JBoss Portal] - Re: Bringing JBoss Negotiation to JBoss Portal

[darran.lofthouse@jboss.com]

"thomas.heute at jboss.com" wrote : 
  | The latest published identity component is 1.0.7 and published here:
  | http://repository.jboss.com/maven2/org/jboss/portal/identity/identity-identity/1.0.7/
  | 

Thanks Thomas, I will try that version first, it is a fairly small compile time dependency on a couple of classes that are extended.

Bolek - I will ping you directly regarding the QA as there are some other discussions ongoing relating to machines to use for this, an issue with testing JBoss Negotiation is that it is dependent on having KDCs and web browsers correctly configured.

In the meantime the code that I needed to override can be seen here: -

http://anonsvn.jboss.org/repos/jbossas/projects/security/security-negotiation/branches/SECURITY-353/jboss-negotiation-portal/src/main/java/org/jboss/security/negotiation/portal/

The PortalAuthenticator is the smallest change, if there was an alternative way to disable the pop up for the username and password that would also work.

The next class is the 'NegotiationUserModuleImpl' and this is only a small change to 'LDAPExtUserModuleImpl' to override the 'validatePassword()' method.  The overall integration is dependent on the login module from JBoss Negotiation being called before the login module for JBoss Porta - this change to 'validatePassword()' just double checks that the first module was successful.

The final extension was in 'PortalIdentityLoginModule' where I needed to retrieve the username identified as part of the negotiation process, for this change I do need to review further if I can find an alternative way to switch the username.


View the original post : http://www.jboss.org/index.html?module=bb&op=viewtopic&p=4231839#4231839

Reply to the post : http://www.jboss.org/index.html?module=bb&op=posting&mode=reply&p=4231839