Uploaded image for project: 'ModeShape'
  1. ModeShape
  2. MODE-2496

Custom authentication providers in the AS kit should always be invoked first, before the built-in container providers

    Details

      Description

      When running a repository via the ModeShape AS subsystem, this repository always uses a JAAS security domain (by default modeshape-security) and creates behind the scenes a container-specific AuthenticationProvider which uses this security domain.

      On the other hand, the AS kit offers the possibility of user-defined custom Authentication providers. If these are present in the configuration, we should make sure they are added first in the chain of providers which will be invoked to authenticate a user, before the built-in container providers.

        Gliffy Diagrams

          Attachments

            Activity

              People

              • Assignee:
                hchiorean Horia Chiorean
                Reporter:
                hchiorean Horia Chiorean
              • Votes:
                1 Vote for this issue
                Watchers:
                2 Start watching this issue

                Dates

                • Created:
                  Updated:
                  Resolved: