5 Replies Latest reply on Oct 4, 2011 9:53 AM by Marcus Moyses

    ExtendedFormAuthenticator in JBoss 7?

    Gregory Charles Newbie

      I'm porting a legacy application from JBoss 4.2.3 to JBoss 7 (the web profile version). They used a custom login module and used a valve to capture the login failure reason into j_exception. They did this by putting context.xml into the web-inf directory of the war, with the following contents:

       

          <!-- Add the ExtendedFormAuthenticator to get access to the username/password/exception ->

          <Context cookies="true" crossContext="true">

          <Valve className="org.jboss.web.tomcat.security.ExtendedFormAuthenticator"

                 includePassword="true" ></Valve>

          </Context>

       

      The login is working for me, but not that valve. When there's a login exception, the j_exception is still empty and the logic that depends on analyzing why the login was rejected fails. According to this link: http://community.jboss.org/wiki/ExtendedFormAuthenticator, everything looks right. However that link is very old, and it's possible things have changed since then. What's the new way?

       

      Cross-posted at: http://stackoverflow.com/questions/7563095/extendedformauthenticator-in-jboss-7