[jboss-user] [Security & JAAS/JBoss] - Re: Trust association and subject building for SSO

RoshanDawrani do-not-reply at jboss.com
Thu Nov 22 13:20:18 EST 2007


Hi Ganesh,
Can you please share how you resolved the authentication issues at web layer as well as the ejb layer in your scenario? I also have to something similar. I have to use a custom SSO solution that sends the authenticated user's name and role as cookies and with that I have to satisfy my web layer and ejb layer security requirements by creating the required principal and subject objects so that the containers are satisfied.

If you can share finally which approach you took it'll help me a lot. Did you end up extending some catalina Authenticator and some JBoss login module to skip the authentication step (as it has already been done by the custom SSO solution) or did you take any other approach?

Thanks,
Roshan


View the original post : http://www.jboss.com/index.html?module=bb&op=viewtopic&p=4107177#4107177

Reply to the post : http://www.jboss.com/index.html?module=bb&op=posting&mode=reply&p=4107177



More information about the jboss-user mailing list