2 Replies Latest reply on Jun 6, 2003 2:03 AM by nish_dce

    JBoss support for integrating legacy security implementation

    nish_dce Newbie

      Hi All,
      I want to know how we can intergrate an already existing legacy implementation of AAA/JAAS with JBoss!
      Is there any API support from JBoss which lets us bypass its own security implementation of JAAS with our own AAA/JAAS implementation?

      Kindly help me out!

      Thanks in advance,
      Nishant.
      nish_dce@indiatimes.com

        • 1. Re: JBoss support for integrating legacy security implementa
          Juha Lindfors Master

          You want to replace the security manager completely?

          Your implementation should be implement RealmMapping and AuthenticationManager interfaces at least. The security manager itself should be an MBean.

          • 2. Re: JBoss support for integrating legacy security implementa
            nish_dce Newbie

            I think I didn't provide enuf info!I am sorry for that!
            Actaully I already have an infrastructure built with support for password aging,no, of user sessions,no of login attempts etc,provided for custom built classes using HTTP/SOAP architecture.
            Now I want to migrate those classes to EJBs and, use the logic of already implemented code to JBoss Login modules/proxies, to achieve the same.
            Is it possible using the current JBoss architecture?That is to say,for example,once I authenticate the user bean using the custom login module providing verification of above mentioned services,the other beans called subsequently won't be calling the same "login" module again.
            ALSO,Is it possible in JBOSS to do the authentication only on "creation" of bean and not on every subsequent method call?

            Thanks in Advance.