Problem using role mapping provider and SSOValve
djeanprost May 3, 2010 5:22 AMHello,
I'm currently migrating many applications from weblogic 8 to jboss 5.1.
In order to get weblogic feature of role mapping (ie : in weblogic.xml, you can provide a mapping of role), I developped a mapping-module, which adds roles to the user using the jboss-web.xml.
Mapping module declaration :
<application-policy name = "sofaxisRealm">
<authentication>
<login-module code = "org.jboss.security.auth.spi.DatabaseServerLoginModule"
flag = "required">
<module-option name = "unauthenticatedIdentity">guest</module-option>
<module-option name = "dsJndiName">java:/authenticationDS</module-option>
<module-option name = "principalsQuery">SELECT password FROM utilisateur WHERE login=?</module-option>
<module-option name = "rolesQuery">SELECT groupe, 'Roles' FROM groupe WHERE membre=?</module-option>
</login-module>
</authentication>
<mapping>
<mapping-module code="com.dexia.sofaxis.security.mapping.providers.DeploymentRolesMappingProvider" type="role"/>
</mapping>
</application-policy>
This mapping module adds role to the connected user. For instance :
in my jboss-web.xml
-
server.log.zip 6.4 KB