2 Replies Latest reply on Feb 19, 2002 11:58 AM by odbwhat

Verifying the login

odbwhat Feb 18, 2002 10:49 PM

I'm using the jdbc login module. The client presentation is a java application which will prompt for the user's login and password.

I'm wondering what is the best way to verify the login? Is there anyway more elegant than just attempting to call a secured method?

If it helps I've enclosed my server and client side auth.conf files.

Server:
rsLogin {
org.jboss.security.auth.spi.DatabaseServerLoginModule required
dsJndiName="java:/rs"
principalsQuery="SecurityGetByLogin ?"
rolesQuery="SecurityGetRolesByLogin ?"
unauthenticatedIdentity=nobody
;
};

Client:
client-login {
org.jboss.security.ClientLoginModule required;
};

Thanks in advance

Mike

1. Re: Verifying the login

jwkaltz Feb 19, 2002 4:59 AM (in response to odbwhat)

> I'm wondering what is the best way to verify the login? Is there anyway more elegant than just attempting to call a secured method?

You could have a bean designed just for the purpose of verifying the login. In my case this bean also retrieves all available user information. So the client gui, when username and password was entered, attempts to get this bean.

I guess you can't really say whether this is more or less elegant than just waiting until the first secured method is called.
Actions
2. Re: Verifying the login

odbwhat Feb 19, 2002 11:58 AM (in response to odbwhat)

That is a better solution than what I had. I was thinking of having a specific method on an existing bean, but a task specifc bean would be much better. I don't really have much info to send to the user at this point, but that login bean would be a perfect place to expand it in the future.

Mostly I was trying to find out if I was way off base.

Thanks for the help
Actions

Go to original post