3 Replies Latest reply on May 26, 2006 12:36 PM by starksm64

Using java.net.Authenticator with JBoss

spovlot May 25, 2006 4:17 PM

(I hope this is the right place to post this)

I want to create a java.net.Authenticator subclass so that I can provide a secured username/password that will be sent to the proxy when a network connection is made.

I will use code such as

Authenticator.setDefault(new secureAuthenticator() );

Will this conflict with anything in JBoss? I found something while searching called org.jboss.security.SecurityAssociationAuthenticator which seems to already be set as the default.

Also, is there a way to configure this in one of the JBoss configuration files? I noticed that ClientLoginModule is related to the org.jboss.security.SecurityAssociation. But I am not exactly sure how. Any additional information on this would be helpful.

Thanks,

Scott

1. Re: Using java.net.Authenticator with JBoss

starksm64 May 26, 2006 11:18 AM (in response to spovlot)

It will conflict with the RMI/HTTP propagation of the caller identity. If your not using that feature it should be fine. We should externalize this via a security service configuration since this is a jvm global setting (unfortunately).
Actions
2. Re: Using java.net.Authenticator with JBoss

spovlot May 26, 2006 11:43 AM (in response to spovlot)

Scott,

Can you suggest a way to deal with this problem so that it does not effect the default JBoss implementation?

Thanks,

Scott Povlot
Actions
3. Re: Using java.net.Authenticator with JBoss

starksm64 May 26, 2006 12:36 PM (in response to spovlot)

RMI/HTTP is not the default transport so overriding the authentictor does not impact anything by default.
Actions

Go to original post