3 Replies Latest reply on Apr 30, 2006 4:30 PM by blalls asdsd

    naive question about jaas authentication

    blalls asdsd Novice

      Sorry for asking this here but the documentation are really bad, and the suggested are far out-of-date.
      I tryed to make my application jass enabled and add this section to jboss.xml:

       <security-domain>java:/jaas/mcipro</security-domain>
      <missing-method-permissions-excluded-mode>false</missing-method-permissions-excluded-mode>
       <unauthenticated-principal>nobody</unauthenticated-principal>
      


      and this one to login-config.xml
       <application-policy name="mcipro">
       <authentication>
       <login-module code="org.jboss.security.auth.spi.DatabaseServerLoginModule"
       flag="required">
       <module-option name="unauthenticatedIdentity">guest</module-option>
       <module-option name="dsJndiName">java:/mciproDS</module-option>
       <module-option name="principalsQuery">SELECT password FROM User WHERE username=?</module-option>
       <module-option name="rolesQuery">SELECT roleId, 'Roles' FROM Role WHERE user_userName=?</module-option>
       </login-module>
       </authentication>
       </application-policy>
      


      but my application still wants to authenticate against the "other" application-policy.
      How can I tell my application to use this application-policy?