[jboss-dev-forums] [JBoss ESB Development] - Re: BaseCertLoginModule Does Not Work?

[h.wolffenbuttel]

Hi Daniel,

Thanx for the assistance! 

The problem was located in the certlogin-users.properties and certlogin-roles.properties. The username should be: 
"CN\=test,\ OU\=test,\ O=\test,\ L=\test,\ ST\=test,\ C\=NL". This means escaping all "," and "=" characters, otherwise the user is not found.

Also the final configuration looks like this:


  |     <application-policy name = "CertLogin">
  |        <authentication>
  |         <login-module code="org.jboss.security.auth.spi.BaseCertLoginModule"
  |           flag = "required">
  |           <module-option name="password-stacking">useFirstPass</module-option>
  |           <module-option name="securityDomain">java:/jaas/CertLogin</module-option>
  |           <module-option name="verifier">org.jboss.security.auth.certs.AnyCertVerifier</module-option>
  |        </login-module>
  |        <login-module code="org.jboss.security.auth.spi.UsersRolesLoginModule"
  |            flag = "required">
  |            <module-option name="password-stacking">useFirstPass</module-option>
  |            <module-option name="defaultUsersProperties">props/certlogin-users.properties</module-option>
  |            <module-option name="defaultRolesProperties">props/certlogin-roles.properties</module-option>
  |            <module-option name="usersProperties">props/certlogin-users.properties</module-option>
  |            <module-option name="rolesProperties">props/certlogin-roles.properties</module-option>
  |         </login-module>
  |         </authentication>
  |      </application-policy>
  | 

Regards,

Hans

View the original post : http://www.jboss.org/index.html?module=bb&op=viewtopic&p=4261030#4261030

Reply to the post : http://www.jboss.org/index.html?module=bb&op=posting&mode=reply&p=4261030