This content has been marked as final.
Show 3 replies
-
1. Re: some questions on authentication
ragavgomatam Aug 20, 2008 1:16 PM (in response to maggu)Answers below :-
(1) If you want to use JAAS for authentication, YES
(2) Passwords are NEVER stored in request. Principal can be got from the request after successful authentication by callingrequest.getPrincipal().
(3)After successful authentication Principal is cached till the expiry of HttpSession. Yes no, need for extra authentication till session expires.
(4) Can be used from JSP's and Servlets,. For that matter any web based client is fine this way.
Not Swing. You'll need to a typical JAAS login (with CallbackHandlers and config files) for that. No .NET client cannot do a JAAS login.
Hope this helps -
2. Re: some questions on authentication
maggu Aug 20, 2008 5:13 PM (in response to maggu)Thanks ragavgomatam. That helps a lot.
Do you know of any resources/examples for the SWING authentication? -
3. Re: some questions on authentication
ragavgomatam Aug 20, 2008 7:38 PM (in response to maggu)Check out the sticky
JAAS Howto:README FIRST
in this forum