[jboss-user] [Security] - AdvancedLdapLoginModule - get groups
do-not-reply at jboss.com
Tue Nov 17 14:34:59 EST 2009
I successfully integrated the SPNEGO authentication module. In my application, I see that req.getUserPrincipal() returns the userid of the user logged into the Windows machine (e.g., jdoe at mycom.com).
How do I find out if this user belongs to a specific AD group? (note: I have the group name I'm looking for)
I'm accustom to using req.isUserInRole(aRole) but it appears I can put any value in here and it returns "false".
I tried integrating the Advanced LDAP Login Module (chained configuration) per the JBoss Negotiation users guide. The integration worked but still the same result - req.isUserInRole() returns false.
Is this the purpose of the Advanced LDAP Login Module or am I mis-interpreting why I would use it? Do I need to write my own JAAS module?
View the original post : http://www.jboss.org/index.html?module=bb&op=viewtopic&p=4266169#4266169
Reply to the post : http://www.jboss.org/index.html?module=bb&op=posting&mode=reply&p=4266169
More information about the jboss-user