3 Replies Latest reply on Dec 11, 2003 2:54 AM by anis

    Where is my custom Principal

    James Moring Newbie

      I have created a custom server login module that subclasses AbstractServerLoginModule. My module returns a custom Principal from getIdentity(). However when I fetch the principal in either an EJB or Servlet it is always SimplePrincipal. Was I wrong in assuming that I would get my principal back? If i'm not wrong, how do I get it?

      Jboss 2.4.4 bundled with Catalina 4.01

      Thanks!!

        • 1. Re: Where is my custom Principal
          Luke Taylor Novice

          Hi,

          There's no guarantee that what you get returned will be an instance of the principal class used in the login module. It just represents the principal as mapped to the application domain.

          If you want direct access the principals as defined in the operational environment, then your best plan is probably to use the Subject. There is an example of how to do this in the following article:

          http://www.javaworld.com/javaworld/jw-02-2002/jw-0215-ejbsecurity_p.html

          Luke.


          • 2. Re: Where is my custom Principal
            Oskar Milton Newbie

            I had the same problem but when i added the 'CallerPrincipal' group to my custom loginmodule I got my custom principal.

            My commit() method in my custom loginmodule now looks like:

            //Method to commit the authentication process (phase 2).
            public boolean commit()
            {
            if(m_Subject != null)
            {
            Set principals = m_Subject.getPrincipals();
            Set roles = m_Subject.getPublicCredentials();
            if(principals != null && roles != null)
            {
            principals.add(new UserPrincipal(new SnapshotPK(this.m_ID), m_Username));

            // Set the rules for this principal in the 'Rules' group
            Group group = new SimpleGroup("Roles");
            group.addMember(new SimplePrincipal("root"));
            principals.add(group);

            // Set the Principal class returned from a call to m_CTX.getCallerPrincipal()
            Group callerPrincipalGroup = new SimpleGroup("CallerPrincipal");
            callerPrincipalGroup.addMember(new UserPrincipal(new SnapshotPK(this.m_ID), m_Username));
            principals.add(callerPrincipalGroup);

            return true;
            }
            return false;
            }
            return false;
            }

            I hope this can help you!
            /OM

            • 3. Accessing custom principal in web container
              anis Newbie

              Hi,
              Better late than never !
              ist it possible to use this method on client side, i.e. in my servlet?