[jboss-jira] [JBoss JIRA] Updated: (JBAS-6392) Make HttpNamingContextFactory support jndi SECURITY_PRINCIPAL style logins like /security/src/main/org/jboss/security/jndi/LoginInitialContextFactor

[Andrew Oliver (JIRA)]

     [ https://jira.jboss.org/jira/browse/JBAS-6392?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel ]

Andrew Oliver updated JBAS-6392:
--------------------------------

    Attachment: patch
                patch.jar


1. first a patch that does this (against a checkout of the 4.2 branch at least)
2. a compiled version that you can use by doing jar -xf patch.jar into a directory and then from that directory jar -uf $JBOSS_HOME/client/jbossall-client.jar org/jboss/naming/*.class  (note this assumes you use jboss naming in your client, if you use all the little jars then you will have to figure out which one has HttpNamingContextFactory.class in it)
3. I'll commit this in a sec for later release in 4.2.4 and possibly 5.0.x if I manage to get it to build.

This is a pretty minor little feature that mainly people got used to using in WebLogic but it is a pretty good idea anyhow.

Note the patch differs slightly from the way that LoginInitialContextFactory works.  LoginContextFactory fails if there is no auth.conf (which there is not by default) which is a major pain in Java Web Start style apps.  This trys for the default behavior but if that fails it does the smart thing and uses the default username/password style login module configuration (the DummyConfiguration) without regards to a conf file.  This is much nicer IMO.  I'd fix LoginInitialContextFactory but then I'd have to refactor where these are to avoid duplicating the same code in both places.  I'm unencumbered with a desire to do that at the moment.  If someone else wants to maybe create all of these in one module (  instead of some in security and some in server etc) and maybe give some sanity to the names (subclass them with classes with the old names for compatibility) then I'll go factor this out into common code and add balance to the force.  On the whole LoginInitialContextFactory is kind of boneheaded.  If someone set SECURITY_PRINCIPAL then they probably want this behavior, if they didn't then they don't no need for special versions of things.

> Make HttpNamingContextFactory support jndi SECURITY_PRINCIPAL style logins like /security/src/main/org/jboss/security/jndi/LoginInitialContextFactor
> ----------------------------------------------------------------------------------------------------------------------------------------------------
>
>                 Key: JBAS-6392
>                 URL: https://jira.jboss.org/jira/browse/JBAS-6392
>             Project: JBoss Application Server
>          Issue Type: Feature Request
>      Security Level: Public(Everyone can see) 
>          Components: Naming, Security, System service
>    Affects Versions: JBossAS-4.2.3.GA
>            Reporter: Andrew Oliver
>            Assignee: Scott M Stark
>            Priority: Minor
>         Attachments: patch, patch.jar
>
>   Original Estimate: 2 hours
>  Remaining Estimate: 2 hours
>
> Note that I'm posting this against "SystemService" because for some reason HttpNamingContextFactory is in "server".  

-- 
This message is automatically generated by JIRA.
-
If you think it was sent incorrectly contact one of the administrators: https://jira.jboss.org/jira/secure/Administrators.jspa
-
For more information on JIRA, see: http://www.atlassian.com/software/jira