Hi, I am using WAS 5.0 and write a custom user registry for my own EAR file. But the problem is, with one installation of WAS, all other EAR applications installed will have to share this user registry implementation if they are to use standard J2EE security. This cause a lot of trouble for me because my user registry implementation have to take into account the security for Admin console and any other EAR file using standard J2EE security. Does any of you know how to configure WAS so that user registry for different node or server can be different too. Many thanks
Yep, that can be done. Not through normal websphere administration though.
We have a user registry implementation that's used to protect the admin console. This registry is then capable of loading other registrys and delegating the checkPassword/getUniqueUserIds/... methods to the other registry.
For our registry to know which other class to load, we indicate this through JVM custom properties. This limits the use to one other loaded registry per JVM (= appserver), but that is ok in our case.
My suggestion is that you either standardise you registry so that all applications use the same (maybe you have som company policy?). Another solution would be the one I described above, since you've written a registy before it shouldn't take you too long to do it. It took me about a day or so to enable our class to load other registrys.