1 Reply Latest reply on Nov 1, 2003 9:18 AM by Juha Lindfors

    ClientLoginModule and Hash based authentication

    hat Newbie

      Hello,

      If the authentication is based on hash algorithm, how to use the ClientLoginModule to carry the secret info to the server components from the clients?

      Regards

      yang

        • 1. Re: ClientLoginModule and Hash based authentication
          Juha Lindfors Master

          If you need to add additional security context information into your invocation you can create a client side interceptor that adds this to your invocation object (for instance by adding additional principals into the invocation's propagation context).

          On the server side implement a corresponding server side interceptor that retrieves this information from the invocation. Or modify your SecurityInterceptor to use the info).

          Check the SRP implementation for an example of building handshake protocols between the client and server.

          -- Juha