2 Replies Latest reply on Dec 17, 2010 9:17 AM by antilochus

    What's the best way to hold a short lifespan String that's accessible from a custom LoginModule?

    antilochus

      Basically, I need to display a captcha in an application client's login screen. I have a stateless bean create the image based on a randomly generated String.

       

      I have a custom LoginModule that needs to somehow access this String to validate that client's answer is correct. I've managed to get this working from a web perspective by storing the answer on the session, then having the LoginModule call PolicyContext.getContext("javax.servlet.http.HttpServletRequest") to access it. However I'm stuck on how best to do this from a client application point of view.