[jboss-user] [JCA/JBoss] - Encypted Passwords in datasources: Custom Login Module?

mskonda do-not-reply at jboss.com
Wed Jul 4 07:19:38 EDT 2007

I'm planning to use SecureIdentityLoginModule and PBEIdentityLoginModule for encrypting these passwords as it was mentioned on Wiki.

However, I have a particular requirement that in PBEIdentityLoginModule, the pbepass, salt and prefereably iteration count to be provided by secured config file(which can't be accessed by anone except sysadmin) rather than hardcoding in this login-config.xml.

So, my questions: 

Looks to me that the PBEIdentityLoginModule doesn't do this. Hence is it possible for me to extend this class and implement my own way? Does it break any existing stuff? Is it adviasable to extend this class? Is there any alternative?

If I have my custom class being used in this situation, does this custom class need to take care of login stuff too apart from the encyrption/decryption as other modules are doing?

Any input much appreciated.


View the original post : http://www.jboss.com/index.html?module=bb&op=viewtopic&p=4060365#4060365

Reply to the post : http://www.jboss.com/index.html?module=bb&op=posting&mode=reply&p=4060365

More information about the jboss-user mailing list