2 Replies Latest reply on Feb 19, 2002 11:58 AM by Michael Michael

    Verifying the login

    Michael Michael Newbie

      I'm using the jdbc login module. The client presentation is a java application which will prompt for the user's login and password.

      I'm wondering what is the best way to verify the login? Is there anyway more elegant than just attempting to call a secured method?

      If it helps I've enclosed my server and client side auth.conf files.

      Server:
      rsLogin {
      org.jboss.security.auth.spi.DatabaseServerLoginModule required
      dsJndiName="java:/rs"
      principalsQuery="SecurityGetByLogin ?"
      rolesQuery="SecurityGetRolesByLogin ?"
      unauthenticatedIdentity=nobody
      ;
      };

      Client:
      client-login {
      org.jboss.security.ClientLoginModule required;
      };


      Thanks in advance

      Mike

        • 1. Re: Verifying the login
          J. Wolfgang Kaltz Novice

          > I'm wondering what is the best way to verify the login? Is there anyway more elegant than just attempting to call a secured method?

          You could have a bean designed just for the purpose of verifying the login. In my case this bean also retrieves all available user information. So the client gui, when username and password was entered, attempts to get this bean.

          I guess you can't really say whether this is more or less elegant than just waiting until the first secured method is called.

          • 2. Re: Verifying the login
            Michael Michael Newbie

            That is a better solution than what I had. I was thinking of having a specific method on an existing bean, but a task specifc bean would be much better. I don't really have much info to send to the user at this point, but that login bean would be a perfect place to expand it in the future.

            Mostly I was trying to find out if I was way off base.

            Thanks for the help