This content has been marked as final.
Show 3 replies
-
1. Re: LdapExtLoginModule.java bug? Blank password login succes
jaikiran Feb 4, 2008 3:43 AM (in response to barramundi)Are you sure this login configuration is being used for authenticating? Are you doing a programatic login or container managed login? If you are using container managed login, have you configured the security-domain in the jboss-web.xml? What do the TRACE level logs from security package, show? See Q4 at http://wiki.jboss.org/wiki/Wiki.jsp?page=SecurityFAQ to enable TRACE level logs.
-
2. Re: LdapExtLoginModule.java bug? Blank password login succes
behmen Feb 4, 2008 5:19 AM (in response to barramundi)its not a bug, its a feature ;-(
you must set this in the loginconfig:
<module-option name="allowEmptyPasswords">false</module-option> -
3. Re: LdapExtLoginModule.java bug? Blank password login succes
barramundi Feb 4, 2008 8:10 AM (in response to barramundi)Cool!
I tried the allowEmptyPasswords option. Works like a charm.