0 Replies Latest reply on Nov 15, 2006 8:50 AM by Dominik Rauch

    role-name in web.xml <-> principals?

    Dominik Rauch Newbie

      I am currently using JBoss 4.0.4 and try to write my own LoginModule to authenticate to a restricted web resource collection:

      <security-constraint>
       <web-resource-collection>
       <web-resource-name>SampleApplication</web-resource-name>
       <url-pattern>/SampleApplication/*</url-pattern>
       </web-resource-collection>
       <auth-constraint>
       <role-name>CertifiedUser</role-name>
       </auth-constraint>
       <user-data-constraint>
       <transport-guarantee>NONE</transport-guarantee>
       </user-data-constraint>
      </security-constraint>
      <security-role>
       <role-name>CertifiedUser</role-name>
      </security-role>
      

      the login with my login module works well, the principals are set. but i don't understand how to add the subject a role of the web.xml, in order to access the restricted content.

      best regards,
      sidewinder