I have an enterprise application that makes use of JAAS for its authentication. The ultimate goal is to authenticate an external user (using custom md5/timestamp logic, e.g. since we don't know what the password is) and place a subject for the user (programatically using JaaS custom Login Modules) in the enterprise application.
I have done the work for creating and configuring the module. The area where I am stuck is when I try and create a subject for the user. Is there a way I can create a subject for the incoming user when we don't know the password of the user?
To this point, I extended Principal class and tried to instantiate that Principal-extended class in my JAAS module's login() method. The issue I am facing is that Websphere 8.1 will NOT authenticate and throw an invalid credential error even after having put the shared state in the Websphere.
Websphere version: 8.1 SP3
Windows Active Directory
Any pointers will be greatly appreciated! Thanks a lot.