You would have to specify your hown CallbackHandler implementation that knew how to provide the text information as there is no way for the default JBoss handler to know how to deal with TextInputCallbacks. You would need to specify your CallbackHandler implementation to the JaasSecurityManagerService setup found in the conf/jboss-service.xml descriptor:
<!-- JAAS security manager and realm mapping --> <mbean code="org.jboss.security.plugins.JaasSecurityManagerService" name="jboss.security:service=JaasSecurityManager"> <attribute name="SecurityManagerClassName"> org.jboss.security.plugins.JaasSecurityManager </attribute> <attribute name="CallbackHandlerClassName"> x.y.z.MyCallbackHandler </attribute> </mbean>
The x.y.z.MyCallbackHandler should subclass the default org.jboss.security.auth.callback.SecurityAssociationHandler implementation and delegate the Callbacks not handled by MyCallbackHandler to the SecurityAssociationHandler implementation.
I know this thread is very old but I am trying to implement something very similar, I too need to capture the users organisation.
However all I did was amend my customer and the ClientLoginModule to supply a TextInputCallback. Both my JAAS login and the filter which uses the Client-login module populate this callback with the organisation.
Why should I need to amend the jboss-service.xml?
You don't need to if you have witten a custom version of the ClientLoginModule.