In JBoss Application Server v5.1, you can specify a custom call back handler to be used in authentication in any of the following 3 ways:
1) Specify an attribute "CallbackHandlerClassName" in the JaasSecurityManagerService mbean definition in conf/jboss-service.xml
http://www.jboss.org/community/wiki/JaasSecurityManagerService
2) Specify a system property with the fully qualified class name of the call back handler
-Dorg.jboss.security.callbackhandler=org.somefqn
3) Inject an instance of the callback handler into the JNDISecurityManagement bean in the deploy/security/security-jboss-beans.xml
=================================================================================
<bean name="MyCustomCBH" class="fqn of your class" />
<bean name="JNDIBasedSecurityManagement"
class="org.jboss.security.integration.JNDIBasedSecurityManagement">
<property name="callBackHandler">'<inject bean="MyCustomCBH"/></property>
</bean>
=================================================================================
Unfortunately, the custom callback handler feature is broken in JBoss AS5.0, 5.0.1 and was fixed in JBAS-6747
NOTE: JBAS-6747 is fixed.
No comments:
Post a Comment