Stack Overflow
Stack Overflow

Questions tagged [jaas]

JAAS is the Java Authentication and Authorization Service found in the JRE (1.4+).

The Java Authentication and Authorization Service (JAAS) is a Java security framework for user-centric security to augment the code-based security. Since JRE 1.4, JAAS has been integrated with the - previously JAAS was supplied as an extension library by Sun.

The main goal of JAAS is to separate the concerns of user authentication so that they may be managed independently. While the former authentication mechanism contained information about where the code originated from and who signed that code, JAAS adds a marker about who runs the code.

By extending the verification vectors JAAS extends the security architecture for Java applications that require authentication and authorization modules.

Useful Links:

937 questions
0
votes
1 answer

C# authenticate against a remote kerberos kdc

Context: Let's say you were writing a program that provides a service for university students, and you needed to make sure only the particular university's students had access to it. That university, like most, gives its students kerberos…
Mircat
  • 1
  • 2
0
votes
1 answer

Authenticate application users using Kerberos and WAS7

I am struggling for a while to put things head to head and solve this issue but with no luck. I am trying to authenticate my java application users through AD using Kerberos. I have created the KDC as below: [libdefaults] default_realm =…
user1531547
  • 3
  • 2
0
votes
1 answer

Login issue with DatabaseServerLoginModule in JBoss 6

I get a ServeletException: Failed to authenticate a principal when I attempt to login with the DatabaseServerLoginModule. I'm guessing the issue is either how passwords are written to the db or the rolesQuery that is incorrect. I certainly can use…
simgineer
  • 1,754
  • 2
  • 22
  • 49
0
votes
1 answer

Specify LDAP group search attributes in Jetty LdapLoginModule

When using JAAS, is there any way to specify the attributes returned by the role (group) search query? The group returned has about 100k entries in the uniqueMember attribute which is saturating the link between the app server and OpenLDAP. Since…
Phil
  • 157,677
  • 23
  • 242
  • 245
0
votes
1 answer

how to use getRoles method of Weblogic role mapping provider?

Could somebody please provide the usage of the getRoles() method of a Weblogic role mapping provider? How is this used in code?
bsunil79
  • 7
  • 4
0
votes
1 answer

Adding user role constraint redirects Browser to jsf.js script?

My JSF form login was working with Constraint 1 however when I added Constraint 2 to my web.xml doing a submit on the form now takes me to a jsf javascript page. Can someone tell me what I am doing wrong? I'm hoping this is a quick configuration…
simgineer
  • 1,754
  • 2
  • 22
  • 49
0
votes
0 answers

ManagedBeanCreationException issue while setting up for JSF/j_security_check test

I'm hoping someone can give me a hint at what's going on here with this exception. I'm putting together an environment where i can test out j_security_check with JSF and what I'm noticing is when i redeploy my application without restarting…
simgineer
  • 1,754
  • 2
  • 22
  • 49
0
votes
1 answer

Tomcat JAASRealm : Getting "Class not added" after starting server

I am using http://blog.frankel.ch/custom-loginmodule-in-tomcat tutorial for tomcat JAASRealm.I have added below in server.xml Realm className="org.apache.catalina.realm.JAASRealm" appName="CustomLogin" …
VJS
  • 2,891
  • 7
  • 38
  • 70
0
votes
2 answers

Is it possible to detect in a servlet that a user is connected using VPN

I need to give users different access to specific function in web app depends on remote (VPN) or local connection. Is it possible? I am using a Websphere server.
Ronen
  • 807
  • 1
  • 13
  • 33
0
votes
1 answer

Programmatic login based on JDBCRealm

I'm trying to implement OpenID authentication in a simple JSP app. The FORM-based authentication really drives me nuts, since there is no way to listen for pre, post-authenticate events. When I receive user information from OpenID-provider I…
jFrenetic
  • 5,384
  • 5
  • 42
  • 67
0
votes
1 answer

JAAS and acess from android

Hi i have secured my server using JAAS and i have performed the web authentification , now i have to authenticate from mobile application using android app , how can we use the Rest web services after authentication , is JAAS support access from…
AhmedDrira
  • 425
  • 5
  • 13
0
votes
1 answer

Can j_security_check authentication be followed by another web authentication mechanism?

In my web app, I am using form-based login. I have a scenario where I have to validate the users present in a different database in addition to the data of the table set in login-config.xml. So,I was thinking of this flow: User tries to access a…
Sudhakar
  • 3
  • 2
0
votes
2 answers

JAAS + authentication from database

I am trying to perform an authentication from data base using JAAS I've configured the login-config.xml like this
AhmedDrira
  • 425
  • 5
  • 13
-1
votes
2 answers

Authenticate users based on a username / password of windows

I am new to authentication and autherization, I have to authenticate user from my windows UserId and Password in my web Application using spring. Is it possible in java1.6 and spring2.5. Please provide me some useful links or sample
prem
  • 163
  • 2
  • 3
  • 5
-1
votes
1 answer

How to enable SASL mechanism in kafka locally

How to enable SASL mechanism with JAAS Authentication for kafka ? thus the consumer/producer have to provide username & password in order to be able to publish in the broker
Smaillns
  • 2,540
  • 1
  • 28
  • 40
1 2 3
62
63