what is the best solution for an externally authenticated user to be identified as a portal user?
For a successful authenticated user I have its uniqueID available as a header attribute. Looking at the sources I found two possible base classes for my custom login module:
I would tend to choose the first one in order to avoid passing the uniqueID as a parameter.
Any hints are welcome.
HttpServletRequestLoginModule is not accessible outside of the package, so I derived from the IdentityLoginModule and evaluated the passed header attribute. I order to do this, I modified the login.jsp, which initially gets the header attribute, to automatically submit the form if the expected header attribute is passed.
If there is a smarter solution, please let me know.