2 Replies Latest reply on Nov 12, 2002 8:13 PM by Luke Taylor

    Jboss Authentication and Authorization..

    Vikram Rao Newbie


      I'm new to JBoss and have downloaded JBoss 3.0.4 with Tomcat 4.1.12. I need to deploy a web application and was wondering what are the steps involved in creating a security around the app. I have written my own LoginModule implementation and have created a jar file (say temp.jar). I also modified the login-config.xml to contain a new application-policy element (say name = "temp"), created jboss-web.xml to point to this application element and modified my web.xml to contain this new realm-name "temp". Is there anything else I am missing? In the logs I see the reference to temp being created, but I don't see any of my debug statements from withing the LoginModule implementation. Also, I do not get into my application with any combination of user name / password. The LoginModule implementation has a hard coded username / password combination for authentication.

      Any further information on what needs to be fixed / done would be appreciated.