Home > Default > Custom JAAS login module configuration in Oracle application server

Custom JAAS login module configuration in Oracle application server

October 11Hits:6
Advertisement
I have a LDAP login module implementing javax.security.auth.spi.LoginModule. This login module works well with tomcat and weblogic, if I configure the JVM arguments -Djava.security.auth.login.config and -Djava.security.policy to point to the login.conf and access.policy files. The login.conf file has the below content
FREEWAY_SERV
com.wipro.freeway.security.LdapLoginModule required debug=true portal=false;
FREEWAY_PORT
com.wipro.freeway.security.LdapLoginModule required debug=true portal=true;
The access.policy file has contains content like below:
grant Principal com.wipro.freeway.security.RolePrincipal "UserAdministration" {
     permission com.wipro.freeway.security.URLPermission "/createOtherUser.frw";
     permission com.wipro.freeway.security.URLPermission "/createDealer.frw";
The application uses these login modules by passing Name of the JAAS configuration (FREEWAY_SERV or FREEWAY_PORT).
I would like to use the same login module and code in Oracle application sever 10.1.3 and I haven't got any success yet. I am not getting how to set these JVM properties and make my application identify this custom login module. I have tried configuring the custom login module via oc4j admin console and I couldn't give a name to my configuration. I also set the system properties for
-Djava.security.auth.login.config and -Djava.security.policy with no success.
Could anybody please help me to get this right?
Thanks in advance.

Answers

Hello,
In OracleAS 10g R3 (10.1.3.x) you can register your login module in your application (and server) using Enterprise Manager, and config file. That is easier and more flexible that the parameter.
I would invite you to take a look to the security how-to:
- 10.1.3 How-tos, and How to integrate a custom login module
You can also take a look to the 10.1.3 Documentation and the LDAP/Login Module integration.
- Security guide: Login Modules

Read other 3 answers

Tags:

Related Articles

  • Custom JAAS login module configuration in Oracle application serverOctober 11

    I have a LDAP login module implementing javax.security.auth.spi.LoginModule. This login module works well with tomcat and weblogic, if I configure the JVM arguments -Djava.security.auth.login.config and -Djava.security.policy to point to the login.co

  • JAAS login module configuration in Oracle application serverOctober 11

    I have a LDAP login module implementing javax.security.auth.spi.LoginModule. This login module works well with tomcat and weblogic, if I configure the JVM arguments -Djava.security.auth.login.config and -Djava.security.policy to pont to the login.con

  • Custom JAAS Login Module 9.0.4 configuration problemsNovember 30

    Hello, We have created a custom JAAS Login Module on OC4J 9.0.4 and are having some sort of configuration problem We always get this error: Caused by: javax.security.auth.login.LoginException: Login Failure: all modules ignored      at javax.security

  • How to deploy and configure custom JAAS login moduleNovember 30

    Dear Experts, I have created a custom jaas login module, In my .jar I am having 1. MyLoginModule.class 2. Handler.class 3. MyPrincipal.class I want to know how to deploy the custom jaas module to oc4j. And make available to all other application to u

  • JDEV deployment of web app with custom JAAS login module failsNovember 30

    For the first time, I am trying to implement a custom JAAS login module. JDEV deployment to standalone OC4J only fails when my orion-application.xml is included. The deployment fails with a java.lang.InstantiationException. This what I have done: 1)

  • Accessing LDAP in a custom JAAS login moduleOctober 11

    Hi, I have developed a custom jaas login module in CE 7.1. I created a java dc which contains a class extending AbstractLoginModule. This DC is deployed on to the server using an EAR DC. I am trying to access LDAP in the custom login module. I am try

  • Howto put custom JAAS Login Module into NWDINovember 30

    Hi there! We are currently in migration phase and want to integrate existing codings to NWDI. We mainly had Web Dynpro projects which we figured out how to migrate through discovering  help.sap.com Formerly I developed a custom JAAS login module whic

  • Problems deploying custom JAAS login module (ClassNotFound)November 30

    Hi, I've developed a custom made JAAS login module that filters on IP addresse which I am moving from 6.20 to 6.40. I've pretty much followed the procedures from http://help.sap.com/saphelp_nw04/helpdata/de/46/3ce9402f3f8031e10000000a1550b0/content.h

  • Oc4j to Weblogic: JAAS login module in enterprise web applicationOctober 11

    Hi Experts, I have a LoginModule defined in my existing EAR application. oc4j doc referece: http://download.oracle.com/docs/cd/B31017_01/web.1013/b28957/loginmod.htm#BABECDDC I already followed Developing Custom Security Provider : http://download.or

  • Custom JAAS Login ModuleNovember 30

    I have a question about sample in "Developing security providers for weblogic server" of WebLogic 7.0 In 3-21 in the document, abort() method may be called n times after abort. Why is it possible that abort() method is called many times? Regards

Copyright (C) 2019 wisumpire.com, All Rights Reserved. webmaster#wisumpire.com 14 q. 0.474 s.