IdPAuthUserPass - JAAS login modules?
Joaquin Menchaca
jmenchaca at verticalresponse.com
Thu Oct 17 19:09:03 EDT 2013
Thanks so much, I'll try to configure tomcat route, then upon failing that try Apache the the remote handler. In the future, when they wire this up to a Postgres database, I'll have to explore something else out.
I asked some of the questions, to understand why I couldn't use a particular login module versus another login module. When I do searches out there, I get examples of implementing a JAAS solution in Java, but not configuring it from some servlet.
- joaquin
On Oct 17, 2013, at 10:45 AM, Kevin P. Foote <kpfoote at iup.edu> wrote:
>
> On Thu, 17 Oct 2013, Joaquin Menchaca wrote:
>>
>> I was exploring how to enter simple authentication, without implementing
>> a LDAP or Kerberos server, but I am confused about this part of the
>> puzzle.
>
> Scott already mentioned the easiest way to go for user/pass is to use the
> RemoteUser LoginHandler then protect a location with a .htpassword file
> via apache.. something like that anyway. (this gets you entirely out of
> the JASS area)
>
>> If I do, let's say user/password through a configuration in JAAS, this
>> won't work overall because I need to pull attributes from somewhere? Or
>> can I hardwire something to prove communication works? My target SP
>> (Salesforce) requires some attribute to be configured.
>
> Your login is completely independent of your attribute resolution
> phase. You can pull attributes from anywhere .. or make them up at the
> IdP
>
>
> ------
> thanks
> kevin.foote
> --
> To unsubscribe from this list send an email to users-unsubscribe at shibboleth.net
-------------- next part --------------
A non-text attachment was scrubbed...
Name: signature.asc
Type: application/pgp-signature
Size: 163 bytes
Desc: Message signed with OpenPGP using GPGMail
Url : http://shibboleth.net/pipermail/users/attachments/20131017/bc16073a/attachment.bin
More information about the users
mailing list