Last week, we had the author of TDD for a Shopping Website LiveProject. Friday at 11am Ranch time, Steven Solomon will be hosting a live TDD session just for us. See for the agenda and registration link
  • Post Reply Bookmark Topic Watch Topic
  • New Topic
programming forums Java Mobile Certification Databases Caching Books Engineering Micro Controllers OS Languages Paradigms IDEs Build Tools Frameworks Application Servers Open Source This Site Careers Other Pie Elite all forums
this forum made possible by our volunteer staff, including ...
  • Campbell Ritchie
  • Paul Clapham
  • Ron McLeod
  • Jeanne Boyarsky
  • Tim Cooke
  • Liutauras Vilda
  • paul wheaton
  • Henry Wong
Saloon Keepers:
  • Tim Moores
  • Tim Holloway
  • Stephan van Hulst
  • Carey Brown
  • Frits Walraven
  • Piet Souris
  • Himai Minh

Chaining JAAS modules, X509 and NTLM

Posts: 1
  • Mark post as helpful
  • send pies
    Number of slices to send:
    Optional 'thank-you' note:
  • Quote
  • Report post to moderator
I am researching using JAAS login modules to accomplish the following requirement:

First, if the user presents an X509 certificate, then authenticate using that certificate (this module is already written)

Second, if no certificate is presented, use NTLM single sign on for authentication. If using IE, I believe that the module should be able to pull the username/password out of the request. If not, prompt the user for the information.

I seem to be able to make one method or the other work, but not the combination of the two. Is this even possible?

I have been looking at the tagish NTLM LoginModule, which seems to use BASIC authentication. It doesn't seem to me that I can use BASIC authentication and cert authentication in this either-or fashion.

Any help would be appreciated.
Yeah, but is it art? What do you think tiny ad?
free, earth-friendly heat - a kickstarter for putting coin in your pocket while saving the earth
    Bookmark Topic Watch Topic
  • New Topic