This week's book giveaway is in the Agile and other Processes forum.
We're giving away four copies of The Mikado Method and have Ola Ellnestam and Daniel Brolund on-line!
See this thread for details.
The moose likes JBoss and the fly likes Combining JASS & Custom Realms Big Moose Saloon
  Search | Java FAQ | Recent Topics
Register / Login


Win a copy of The Mikado Method this week in the Agile and other Processes forum!
JavaRanch » Java Forums » Products » JBoss
Reply Bookmark "Combining JASS & Custom Realms" Watch "Combining JASS & Custom Realms" New topic
Author

Combining JASS & Custom Realms

Pramoda Bhat
Ranch Hand

Joined: Oct 17, 2003
Posts: 32
posted private message
0
Quote
Hi,
I'm working on a product, which is running on weblogic & I need to migrate it to JBOSS.
This has a built in security framework & has its own realms. But the Code is using JAAS for basic authorization & there after the Custom Realm take over.
In Weblogic, it uses the default realm myRealm for Authorization.
Can some one tell me what is the default realm in JBOSS(if any) and how to hand over to the Custom Realms?

Thanks
Marco Barenkamp
Ranch Hand

Joined: Aug 27, 2001
Posts: 94
posted private message
0
Quote
JBoss has a default realm "other" that uses the files users.properties and roles.properties.
You have to create those files in the conf directory of your configuration.
# users.properties
user=password

#roles.properties
user=role1,role2

If you want to use an ldap server or db as security realm, you have to
edit the /conf/login-config.xml file accordingly.

Marco Barenkamp<br />_ _ _ _ _ ________________________ _ _ _ _ _ <br />L M I N T E R N E T S E R V I C E S AG<br /> <br />Head of Software Development<br /> <br /> <br />BEA Certified Enterprise Developer<br />Sun Certified Programmer for the Java2 Platform<br />Sun Certified Web Component Developer for the Java2 Platform<br />Sun Certified Developer for the Java 2 Platform <br />Sun Certified Business Component Developer for the Java 2 Platform <br />Sun Certified Enterprise Architect for the Java 2 Platform Enterprise Edition<br /> <br />LMIS AG
Pramoda Bhat
Ranch Hand

Joined: Oct 17, 2003
Posts: 32
posted private message
0
Quote
Thank You...
But still my problem is not solved 100%, as I need to know, after basic authentication I need to pass the control to the custom Realms, How do I go about it?
Marco Barenkamp
Ranch Hand

Joined: Aug 27, 2001
Posts: 94
posted private message
0
Quote
Hi,

the realm is called Securitydomain in JBoss. In the jboss-web.xml (WebApp) or jboss.xml (ejb), you include a security-policy that points to a
securityDomain and that domain is used by the basic auth. That Domain should be configured in login-config.xml and it points to the Datebase,ldapserver etc. that you want to use.
 
I agree. Here's the link: http://ej-technologies/jprofiler - if it wasn't for jprofiler, we would need to run our stuff on 16 servers instead of 3.
 
subject: Combining JASS & Custom Realms
 
Similar Threads
Log In Security
BEA WebLogic Container Security
Configuring Tomcat through WAR file
UserID and security-role mapping in WLS
BEA WebLogic Container Security