Uploaded image for project: 'Seam 2'
  1. Seam 2
  2. JBSEAM-2230

Allow Seam to work with the WebLogic JAAS server authentication without any source code modifications

    Details

    • Type: Feature Request
    • Status: Closed (View Workflow)
    • Priority: Optional
    • Resolution: Done
    • Affects Version/s: 2.0.0.GA
    • Fix Version/s: 2.1.0.BETA1
    • Component/s: Security
    • Labels:
      None
    • Environment:

      BEA WebLogic Server v. 10 MP1 (The issue should be observable from version 8 and up)

      Description

      When using JBoss Identity for server delegated security authentication using the jaas-config-name attribute in security:identity XML element inside JBoss SEAM components.xml file and deploying that on BEA WebLogic Server then the authentication is always failing if the default WebLogic JAAS module is used. Follows the WebLogic server JAAS configuration file content :

      myrealm

      { weblogic.security.auth.login.UsernamePasswordLoginModule required authOnLogin="true" debug="false"; }; The problem is that the WebLogic server passes JAAS callback weblogic.security.auth.callback.URLCallback on which Seam throws an UnsupportedCallbackException class exception. To make this functionality to work you have to either 1) create custom JAAS module for WebLogic server 2) Extend org.jboss.seam.security.Identity and org.jboss.seam.security.RuleBasedIdentity classes to override protected CallbackHandler getDefaultCallbackHandler() method and include a new else branch before the default that throws UnsupportedCallbackException }

      else if (callbacks[i].getClass().getName().equals
      ("weblogic.security.auth.callback.URLCallback"))

      { // deliberately ignored. }


      3) Include the code in 2 inside the JBoss Seam Identity class - not having the User to debug why it is not working and then to create a new class to extend that in order to make it workable

      In my opinion performing 3 will be the easier from User's point of view and will allow Seam to use WebLogic JAAS server authentication without any coding from JBoss Seam User point of view.

      Note that the proposed code doesn't depend on any BEA WebLogic specific classes.

        Gliffy Diagrams

          Attachments

            Activity

              People

              • Assignee:
                shane.bryzak Shane Bryzak
                Reporter:
                kchobantonov Krasimir Chobantonov
              • Votes:
                0 Vote for this issue
                Watchers:
                0 Start watching this issue

                Dates

                • Created:
                  Updated:
                  Resolved: