Space: PicketBox| JBoss.org Content Archive (Read Only)

SecureIdentityLoginModule Password Decryption
Gregory Charles writes: (as a comment at https://community.jboss.org/wiki/JBossAS7SecuringPasswords#comment-8828) his seems to me to solve a problem we didn't have. In JBoss 7.0.2, I was able to encrypt the dat...
last modified by anil.saldhana
1
0
3 Replies3
SecureIdentityLoginModule Password Decryption
Back
PicketBox XACML (JBossXACML)
PicketBox XACML (Formerly JBossXACML) PicketBox XACML (Formerly JBossXACML) Source Code Current Version Features Download Documentation Container Integration XACML Profiles SAML v2....
last modified by anil.saldhana
2
1
5 Replies5
PicketBox XACML (JBossXACML)
Back
Application Policy Not Found During Home Create
I have a custom login module that works correctly when logging in to the app through the web interface and most of my EJB's. I have an EJB that has a One-to-Many relationship with another bean. When a new Bean A entit...
last modified by pcarrollnf
0
0
2 Replies2
Application Policy Not Found During Home Create
Back
Tomcat 6 webapp with JAAS: call JbossAS7 EJB with same principal
Hi all, we have a legacy Spring (2.5) webapp using JAAS for authentication, hosted on Tomcat 6. Username and passwords are checked against another legacy service, that cant be modified. Once logged in (by ...
created by rvillen
0
0
0 Replies0
Tomcat 6 webapp with JAAS: call JbossAS7 EJB with same principal
Back
JBoss AS 7: How to get Subject in an MBean call implementation?
Dear everyone, our Enterprise application contains a number MBean interfaces which we would like to secure. The MBean interfaces are registered explicitly at the Platform MBean Server so that they are availabl...
created by rmz
0
0
0 Replies0
JBoss AS 7: How to get Subject in an MBean call implementation?
Back
jboss-negotiation-toolkit test SecurityDomainTest does not work
Hi, I need help finding out the solution to make the SecurityDomainTest and Secured test to work. Below is my configuration: Machines: AD ---------- Windows 2008 R2 : (domain : ssodomain.com) Users...
last modified by minal.bagade
0
0
1 Replies1
jboss-negotiation-toolkit test SecurityDomainTest does not work
Back
Updating user credentials
Hello, I have an application runnin on Jboss 4.0.2 The users authenticate using a custom login module which reads user credentials stored in a database I added a functionality which lets user change their password. T...
last modified by tremalnaik
0
0
5 Replies5
Updating user credentials
Back
Changing role of authentified users
I have an application where the users are identified via an Active Directory server. For that, I'm using three stacked LdapExtLoginModule (one for each company of the group I'm working for), and the user is correctly...
created by stephane.wantiez
0
0
0 Replies0
Changing role of authentified users
Back
LdapLoginModule and LdapExtLoginModule: Using a trustore different from the JVM default ?
Hi, I can't see any options in LdapLoginModule and LdapExtLoginModule which can give the ability to use a trustore different from the JVM process's one. Is there such an option? This is very usefull in case ...
created by akrambenaissi
0
0
0 Replies0
LdapLoginModule and LdapExtLoginModule: Using a trustore different from the JVM default ?
Back
SecurityAssociation: javax.security.auth.Subject dissapears
I'm working in large, international banking project in Switzerland. In an Eclipse RCP 3.4 client, some of the remote method calls fail with "Caller unauthorized". We're using ClientLoginModule and JAAS Logon. Everythi...
last modified by wgiersche
0
0
8 Replies8
SecurityAssociation: javax.security.auth.Subject dissapears
Back
Problems with authentication on EJB2
Hi, I'm trying to update an old EJB2-based application to be able to run on JBoss 5.1. Well, everything work except for that I keep getting java.lang.SecurityException: Authentication exception, principal=null on some...
last modified by sverker
1
0
2 Replies2
Problems with authentication on EJB2
Back
Error when getting Subject
Hi, I've a authenticated web application. When I log on it, I should get the authenticated subject usign this code: AccessControlContext acc = AccessController.getContext(); Subject subject = Subject.getSubject(acc)...
last modified by monkiki
0
0
9 Replies9
Error when getting Subject
Back
Passing a custom Principal object from a standalone client to JBoss AS 7.1.1
I'm migrating a JBoss 5.1.0.GA setup to 7.1.1.Final and I'm struggling with some authentication issues, that I could really use some guidance with, since I'm running out of ideas at the moment. What I'm trying to achi...
last modified by ecimon
0
0
1 Replies1
Passing a custom Principal object from a standalone client to JBoss AS 7.1.1
Back
SSL and Non-SSL mixed
приветствую, Все! имею один сервер JBoss 7 и два приложения, возможно ли включить SSL для 1го приложения и запускать 2ое приложение без использования SSL ? спасибо.
created by raa77
0
0
0 Replies0
SSL and Non-SSL mixed
Back
Programatic web authentication with custom security domain on JBoss 7.1.1 Final
Hi, I have seen similar discussions here but I still could not get an answer to my problem. I have a custom login module configured in a security domain which works fine via JNDI. I want to login from web application...
last modified by cduicu
0
0
1 Replies1
Programatic web authentication with custom security domain on JBoss 7.1.1 Final
Back
Multiple passwords in the vault, how to reference them in standalone.xml?
I need an example of putting two passwords into the vault and then referencing them in standalone.xml. I have referenced the keystore file and password via the vault in the ssl connector line in standalone.xml, and ha...
last modified by gbays
0
0
1 Replies1
Multiple passwords in the vault, how to reference them in standalone.xml?
Back
Cache credentials not working for datasource security login modules
We secured datasources using custom login module. This login module is used to retrieve password. Problem is for each connection custom login module is called to retrieve the password . This is huge performace...
created by chode
0
0
0 Replies0
Cache credentials not working for datasource security login modules
Back
LdapExtLoginModule : how to make authentication case-insensitive? (x-posted in PicketLink UserForum)
Hi. I'm using the following configuration for a security domain used by Picketlink (version 2.1.4) on JBoss EPP 5.2.1, but would like to make it so that the user's cn is case-INSENSITIVE. Not sure if this can be confi...
created by ndrw_cheung
0
0
0 Replies0
LdapExtLoginModule : how to make authentication case-insensitive? (x-posted in PicketLink UserForum)
Back
SPNEGO Kerberos Authentication with mod_cluster proxy
I am able to get SPNEGO to work with my setup. I've used jboss-negotiation-toolkit with success, I can access the secured section from my windows AD-authenticated PC without being prompted to login to the webapp. ...
last modified by clauritsen
0
0
1 Replies1
SPNEGO Kerberos Authentication with mod_cluster proxy
Back
WebJASPIOptionalAuthenticator doesn't do actual authentication
I "discovered" the valve WebJASPIOptionalAuthenticator in the JBoss AS (7.1.1, 7.1.3) source code. It doesn't seem to be documented anywhere, but judging from the code and from trying out it appears to do authenticati...
created by atijms
0
0
0 Replies0
WebJASPIOptionalAuthenticator doesn't do actual authentication
Back