Uploaded image for project: 'Application Server 7'
  1. Application Server 7
  2. AS7-4218

Additional optimisation for SASL / JAAS integration when non-JAAS realm used for authentication

    Details

      Description

      The JAAS based authentication and related caching makes an assumption that a username and password is available for the authentication process - where a user has already been authenticated using a SASL mechanisms this is most likely not the case e.g. Digest, Kerberos...

      To bridge this gap we create a fake username and password before the JAAS call - this task is to optimise that so that if a connection is held open the same generated username and password should be used so that any cached value can be used without triggering a JAAS auth for each call.

        Gliffy Diagrams

          Attachments

            Activity

              People

              • Assignee:
                dlofthouse Darran Lofthouse
                Reporter:
                dlofthouse Darran Lofthouse
              • Votes:
                0 Vote for this issue
                Watchers:
                0 Start watching this issue

                Dates

                • Created:
                  Updated:
                  Resolved: