[jboss-jira] [JBoss JIRA] (AS7-4487) Add a <local /> element to the realm authentication definitions.
Darran Lofthouse (JIRA)
jira-events at lists.jboss.org
Fri Apr 13 14:06:47 EDT 2012
[ https://issues.jboss.org/browse/AS7-4487?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=12684036#comment-12684036 ]
Darran Lofthouse commented on AS7-4487:
---------------------------------------
Once this change is in clients can freely remove the "jboss.sasl.local-user.quiet-auth", "true" property - however once this property is removed the clients will need to provide a callback handler that handles both the NameCallback and RealmCallback - the NameCallback should be populated with the name the client wants to use and the RealmCallback can either be populated or ignored.
> Add a <local /> element to the realm authentication definitions.
> ----------------------------------------------------------------
>
> Key: AS7-4487
> URL: https://issues.jboss.org/browse/AS7-4487
> Project: Application Server 7
> Issue Type: Task
> Components: Domain Management, Security
> Reporter: Darran Lofthouse
> Assignee: Darran Lofthouse
> Priority: Critical
> Fix For: 7.1.2.Final-redhat1
>
>
> Removal of this element disables local authentication for connections secured using this realm.
> The config should also allow either a restriction of allowed usernames or a free choice - this will mean that for clients such as EJB clients a user can be chosen client side and the roles still loaded server side even though username/password authentication did not occur.
--
This message is automatically generated by JIRA.
If you think it was sent incorrectly, please contact your JIRA administrators: https://issues.jboss.org/secure/ContactAdministrators!default.jspa
For more information on JIRA, see: http://www.atlassian.com/software/jira
More information about the jboss-jira
mailing list