Hi, I'm working on a product, which is running on weblogic & I need to migrate it to JBOSS. This has a built in security framework & has its own realms. But the Code is using JAAS for basic authorization & there after the Custom Realm take over. In Weblogic, it uses the default realm myRealm for Authorization. Can some one tell me what is the default realm in JBOSS(if any) and how to hand over to the Custom Realms?
JBoss has a default realm "other" that uses the files users.properties and roles.properties. You have to create those files in the conf directory of your configuration. # users.properties user=password
If you want to use an ldap server or db as security realm, you have to edit the /conf/login-config.xml file accordingly.
Marco Barenkamp<br />_ _ _ _ _ ________________________ _ _ _ _ _ <br />L M I N T E R N E T S E R V I C E S AG<br /> <br />Head of Software Development<br /> <br /> <br />BEA Certified Enterprise Developer<br />Sun Certified Programmer for the Java2 Platform<br />Sun Certified Web Component Developer for the Java2 Platform<br />Sun Certified Developer for the Java 2 Platform <br />Sun Certified Business Component Developer for the Java 2 Platform <br />Sun Certified Enterprise Architect for the Java 2 Platform Enterprise Edition<br /> <br />LMIS AG
Joined: Oct 17, 2003
Thank You... But still my problem is not solved 100%, as I need to know, after basic authentication I need to pass the control to the custom Realms, How do I go about it?
Joined: Aug 27, 2001
the realm is called Securitydomain in JBoss. In the jboss-web.xml (WebApp) or jboss.xml (ejb), you include a security-policy that points to a securityDomain and that domain is used by the basic auth. That Domain should be configured in login-config.xml and it points to the Datebase,ldapserver etc. that you want to use.
I’ve looked at a lot of different solutions, and in my humble opinion Aspose is the way to go. Here’s the link: http://aspose.com