1 Reply Latest reply on Aug 13, 2004 10:45 AM by starksm64

DatabaseServerLoginModule Authenticates once only

ousie Aug 13, 2004 7:36 AM

Hi,

I have the following problem: the DBSLM reads the login principals from the database only once, ie. if I change the password and I restart my appilcation, ie. initialize a new clientside LoginContext the old password is still valid(and the new not). When I restart the server the new password is accepted. Do I have to write my own LoginModule?

My config excerpt :

 <application-policy name = "native-database-login">
 <authentication>
 <login-module code="org.jboss.security.auth.spi.DatabaseServerLoginModule" flag="required">
 <module-option name="dsJndiName">java:/BINGODROMEDS</module-option>
 <module-option name="principalsQuery">select Password from BD_AdminUsers where Username = ?</module-option>
 <module-option name="rolesQuery">select UserRoles, 'Roles' from BD_AdminUserRoles where Username = ?</module-option>
 <!--module-option name="rolesQuery">select UserRoles 'Role', UserRoleGroups 'RoleGroup' from BD_AdminUserRoles where Username = ?</module-option-->
 </login-module>
 </authentication>
 </application-policy>

Thanks

1. Re: DatabaseServerLoginModule Authenticates once only

starksm64 Aug 13, 2004 10:45 AM (in response to ousie)

See the section on disabling caching on the wiki:

http://www.jboss.org/wiki/Wiki.jsp?page=CachingLoginCredentials
Actions