Win a copy of Mesos in Action this week in the Cloud/Virtualizaton forum!
  • Post Reply
  • Bookmark Topic Watch Topic
  • New Topic

Form -based authentication Question

 
Karthik Guru
Ranch Hand
Posts: 1209
  • Mark post as helpful
  • send pies
  • Quote
  • Report post to moderator
I have an application that employs Form based authentication.
Once authenticated, it passes on the role / user information to the EJB container as well. Our EJBs use declarative decurity mechanism specified in the descriptor ejb-jar.xml file. Right now the web container is handling the responsiblity of passing on the context to the EJB Container.
If i have to employ a different authenticating mechanism and I DONT want to change my EJB code that checks for the user/role information, how do i go about doing it?
Form Authentication must be authenticating the user against supplied user id/ password , looking for the role the user is mapped to and must be placing an object in session that in turn is used while calling the EJBs?.
How do i do the same thing using a different authentication mechanism so that i dont have to change any code in the EJBs?
thanks.
 
Sri Basavanahally
Ranch Hand
Posts: 75
  • Mark post as helpful
  • send pies
  • Quote
  • Report post to moderator
Hi Karthik,
Can you be a bit more specific please ? What other mechanisms are you referring to - Using something like HTTPS for transmitting id/password ? or something like this ?
-Sri
 
  • Post Reply
  • Bookmark Topic Watch Topic
  • New Topic