I'm trying to write custom JaaS LoginModule for my EJB application. I have implement this one for user/password validation by inheritance from
org.jboss.security.auth.spi.UsernamePasswordLoginModule. But now I need validate by user/password and domain. Application uses web acess and takes security context from web container (HTTP Basic Authorization). And I also intend use form-based authorization with 3 fields: user, domain and password. Idealy I need all of user, domain and password in my LoginModule. How to implement this?
PS/ I've read old thread about broken JaaS implemetation http://community.jboss.org/message/131085. But maybe in 7 years this information was obsolete? : )