Oracle® Containers for J2EE Enterprise JavaBeans Developer's Guide 10g (10.1.3.5.0) Part Number E13981-01 |
|
|
View PDF |
Within the JAAS pluggable authentication framework, an application server and any underlying authentication services remain independent from each other. Authentication services can be plugged in through JAAS login modules without requiring modifications to the application server or application code. A login module is primarily responsible for authenticating a user based on supplied credentials (such as a password), and adding the proper principals (such as roles) to the subject. Possible types of JAAS login modules include a principal-mapping JAAS module, a credential-mapping JAAS module, a Kerberos JAAS module, or a custom login module.
To use a custom JAAS login module with your enterprise beans, the following elements must be configured:
<jazn-loginconfig>
in system-jazn-data.xml
<jazn>
in orion-application.xml
<namespace-access>
in orion-application.xml
For more information, see "Login Modules" in the Oracle Containers for J2EE Security Guide.