1 Reply Latest reply on Sep 24, 2004 12:27 PM by starksm64

Contextual Authentication using JBoss 4.0

kingnothing Sep 21, 2004 8:59 AM

Hi,

I cannot use more than one login-config element in my web-security.xml configuration. So how can I protect my resource with more than one authentication method? Like my application can be accessed using Single Sign-On (SSO), a Certificate or the user can logs in entering its username and password.

And donÂ’t tell me to put all my LoginModule into the same method with the Â“optionalÂ” property ;-) I really donÂ’t want to do this!

Thanx a lot

1. Re: Contextual Authentication using JBoss 4.0

starksm64 Sep 24, 2004 12:27 PM (in response to kingnothing)

Then write a login module that allows for the combination of the required authentication mechanisms in a manner suitable for your application. Why isn't sufficient an approriate control flag:

Sufficient - The LoginModule is not required to
succeed. If it does succeed, control immediately
returns to the application (authentication does not
proceed down the LoginModule list).
If it fails, authentication continues down the
LoginModule list.
Actions