IdPAuthUserPass - JAAS login modules?

Joaquin Menchaca jmenchaca at verticalresponse.com
Thu Oct 17 19:09:03 EDT 2013


Thanks so much, I'll try to configure tomcat route, then upon failing that try Apache the the remote handler.  In the future, when they wire this up to a Postgres database, I'll have to explore something else out.

I asked some of the questions, to understand why I couldn't use a particular login module versus another login module.  When I do searches out there, I get examples of implementing a JAAS solution in Java, but not configuring it from some servlet.

- joaquin

On Oct 17, 2013, at 10:45 AM, Kevin P. Foote <kpfoote at iup.edu> wrote:

> 
> On Thu, 17 Oct 2013, Joaquin Menchaca wrote:
>> 
>> I was exploring how to enter simple authentication, without implementing
>> a LDAP or Kerberos server, but I am confused about this part of the
>> puzzle.
> 
> Scott already mentioned the easiest way to go for user/pass is to use the
> RemoteUser LoginHandler then protect a location with a .htpassword file
> via apache.. something like that anyway. (this gets you entirely out of
> the JASS area)
> 
>> If I do, let's say user/password through a configuration in JAAS, this
>> won't work overall because I need to pull attributes from somewhere?  Or
>> can I hardwire something to prove communication works?  My target SP
>> (Salesforce) requires some attribute to be configured.
> 
> Your login is completely independent of your attribute resolution
> phase. You can pull attributes from anywhere .. or make them up at the
> IdP
> 
> 
> ------
> thanks
>  kevin.foote
> --
> To unsubscribe from this list send an email to users-unsubscribe at shibboleth.net

-------------- next part --------------
A non-text attachment was scrubbed...
Name: signature.asc
Type: application/pgp-signature
Size: 163 bytes
Desc: Message signed with OpenPGP using GPGMail
Url : http://shibboleth.net/pipermail/users/attachments/20131017/bc16073a/attachment.bin 


More information about the users mailing list