wood burning stoves 2.0*
The moose likes BEA/Weblogic and the fly likes Determining requestor's IP in custom authenticator (JAAS) Big Moose Saloon
  Search | Java FAQ | Recent Topics | Flagged Topics | Hot Topics | Zero Replies
Register / Login

Win a copy of Android Security Essentials Live Lessons this week in the Android forum!
JavaRanch » Java Forums » Products » BEA/Weblogic
Bookmark "Determining requestor Watch "Determining requestor New topic

Determining requestor's IP in custom authenticator (JAAS)

Todd Buell

Joined: May 31, 2005
Posts: 21
In a 10.3 environment I have a custom authenticator that is using NameCallback and PasswordCallback to validate against the data stored in a DB. We are now required to record the IP address of the authentication requestor for failed logins but I've not had any luck reliably determining this information.

Our authenticator is implementing javax.security.auth.spi.LoginModule so we can't modify the call to the authenticator.

Initially I tried a ContextHandlerCallback to be passed to the CallbackHandler.handle call, but an exception is thrown if the connection is made via JMX-RMI. (javax.security.auth.callback.UnsupportedCallbackException: [Security:090175]Unrecognized Callback)

Any thoughts or suggestions on how to resolve the IP address of the requestor in the LoginModule?
subject: Determining requestor's IP in custom authenticator (JAAS)
Similar Threads
ContextHandlerCallback can't be handled for T3 connection
Read Client IP Address behind Proxy
iptables firewall
Geo Blocking
Need some advice about Alternate failover for Custom realm