Hi,
I have the following problem: the DBSLM reads the login principals from the database only once, ie. if I change the password and I restart my appilcation, ie. initialize a new clientside LoginContext the old password is still valid(and the new not). When I restart the server the new password is accepted. Do I have to write my own LoginModule?
My config excerpt :
<application-policy name = "native-database-login"> <authentication> <login-module code="org.jboss.security.auth.spi.DatabaseServerLoginModule" flag="required"> <module-option name="dsJndiName">java:/BINGODROMEDS</module-option> <module-option name="principalsQuery">select Password from BD_AdminUsers where Username = ?</module-option> <module-option name="rolesQuery">select UserRoles, 'Roles' from BD_AdminUserRoles where Username = ?</module-option> <!--module-option name="rolesQuery">select UserRoles 'Role', UserRoleGroups 'RoleGroup' from BD_AdminUserRoles where Username = ?</module-option--> </login-module> </authentication> </application-policy>
See the section on disabling caching on the wiki:
http://www.jboss.org/wiki/Wiki.jsp?page=CachingLoginCredentials