[jboss-user] [Security & JAAS/JBoss] - JAAS flow of events

asimov10 do-not-reply at jboss.com
Thu Apr 9 05:57:47 EDT 2009

I'm new here, sorry if the question was already asked.

I'm trying to understand which is the exact flow of events, when authentication for a web app running in Jboss and JAAS are involved.

1) I access some URL of the web application
2) The web app shows its authentication page
3) User enter username/password
4) web app invokes JAAS module (???)
5) jaas module verifies credentialy (???)
6) web appl lets the user in

For the web app there is an entry in login-config.xml:
  <application-policy name = "xellerate">
      <login-module code="org.jboss.security.ClientLoginModule" flag="required">
      <login-module code=
           flag = "required" >
         <module-option name = 
         <module-option name = 

Can you help me to complete the above flow of events?
Thank you very much.

View the original post : http://www.jboss.org/index.html?module=bb&op=viewtopic&p=4224609#4224609

Reply to the post : http://www.jboss.org/index.html?module=bb&op=posting&mode=reply&p=4224609

More information about the jboss-user mailing list