[jboss-user] [Messaging, JMS & JBossMQ] - Re: jms client authentication with client certificates
perzian
do-not-reply at jboss.com
Fri Jun 8 15:15:55 EDT 2007
Adrian, Thank you for your response. Although, I am still a little confused. Isn't the transport layer configuration for SSL done on the UILServerILService MBean by setting the ClientSocketFactory and ServerSocketFactory attributes? I looked at the javadoc for org.jboss.security.ssl.DomainServerSocketFactory and saw that there is a method called setNeedsClientAuth(boolean). Do I need to extend this class, set that method to true, and then set the ServerSocketFactory attribute to the derived class?
Also in doing this can I still do role based authorization? The code I have above is slightly simplified from what we really are trying to implement in that instead of using the BaseCertLoginModule and UserRolesLoginModule we have a custom LoginModule that extends the BaseCertLoginModule and a custom verifier that connects to a remote server to verify the user's certificate and retrieve the roles the user has.
View the original post : http://www.jboss.com/index.html?module=bb&op=viewtopic&p=4052718#4052718
Reply to the post : http://www.jboss.com/index.html?module=bb&op=posting&mode=reply&p=4052718
More information about the jboss-user
mailing list