-
1. Re: Secure JBoss Administration Console with digest authentication
The admin console uses Seam security with form-based JAAS auth. This is configured via the standard Seam mechanisms (i.e. via WEB-INF/components.xml and WEB-INF/pages.xml). If you wanted to switch over to using HTTP digest auth, you'd have to reconfigure Seam security. The docs for Seam security authentication are here:
http://docs.jboss.org/seam/2.1.2/reference/en-US/html/security.html#d0e8660
You'd also have to switch over the jmx-console domain to using digest auth as described here:
http://community.jboss.org/wiki/DIGESTAuth
but I'm assuming you already did that part.
-
2. Re: Secure JBoss Administration Console with digest authentication
Knut / Ian,
Have you been able to resolve the "admin-console/Digest" authentication issue.
The basic authentication works for me but with basic authentication the password is in clear text.
I have been able to do digest authentication for jmx-console and web-console and its working.
Thanks and Regards,
Giri
-
3. Re: Secure JBoss Administration Console with digest authentication
No,
I didn't spend a lot of time messing with it, but it did seem a bit convoluted to get it working in conjunction with Seam security. You'll most likely need to make some changes to the EmbJopr source code and rebuild the admin-console.war in order to get it working. If you do attempt it and hit a wall, I'd suggest posting to the Seam user forum.
-
4. Re: Secure JBoss Administration Console with digest authentication
Hi,
I couldn't resolve the authentication issue.
As Ian wrote you have to change some things Code and I don't try this.
But if you have a solution than it would be nice if you could publish it.
Best regards
Knut