1 Reply Latest reply on Sep 28, 2006 9:32 AM by bvogt

    header authentication login module

    bvogt
    bvogt Sep 27, 2006 7:24 AM

      Hi,

      what is the best solution for an externally authenticated user to be identified as a portal user?
      For a successful authenticated user I have its uniqueID available as a header attribute. Looking at the sources I found two possible base classes for my custom login module:

      org.jboss.web.tomcat.security.HttpServletRequestLoginModule
      and
      org.jboss.portal.identity.auth.IdentityLoginModule

      I would tend to choose the first one in order to avoid passing the uniqueID as a parameter.

      Any hints are welcome.

      Burkhard

      • 896 Views
      • Tags:
        • 1. Re: header authentication login module
          bvogt
          bvogt Sep 28, 2006 9:32 AM (in response to bvogt)

          HttpServletRequestLoginModule is not accessible outside of the package, so I derived from the IdentityLoginModule and evaluated the passed header attribute. I order to do this, I modified the login.jsp, which initially gets the header attribute, to automatically submit the form if the expected header attribute is passed.

          If there is a smarter solution, please let me know.

          Burkhard

            • Actions