2 Replies Latest reply on Mar 30, 2004 10:46 AM by starksm64

    custom LoginModule based on AbstractServerLoginModule

    ahardy66


      It looks to me like JBoss's AbstractServerLoginModule's roles grouping method is incompatible with tomcat.

      In this class's commit() method, there's this little bit of code:

      if( subjectGroup instanceof NestableGroup )
      {
       /* A NestableGroup only allows Groups to be added to it so we
       need to add a SimpleGroup to subjectRoles to contain the roles */
       SimpleGroup tmp = new SimpleGroup("Roles");
       subjectGroup.addMember(tmp);
       subjectGroup = tmp;
      }


      Tomcat doesn't see the roles in the NestableGroup. So I have overridden the create() method so that I produce SimpleGroups instead of Nestables.

      Is this expected behaviour? Are NestedGroups for some non-tomcat / non-web authentication & authorisation model?

      Thanks,
      Adam