Uploaded image for project: 'WildFly'
  1. WildFly
  2. WFLY-2111

Enhance CallbackHandler / Realm Integration with lifecycle callbacks.

    XMLWordPrintable

Details

    Description

      The authentication / group loading interaction with security realms is a multi-step process, strictly speaking the realm is not actually involved in making the 'authenticated' decision - instead the callbacks allow the entry point to make that decision.

      As it is a multi-step process it is beneficial to cache resources between the steps e.g. connections to servers containing the actual users.

      As a bare minimum we need the 'org.jboss.as.domain.management.AuthorizingCallbackHandler' interface to have a method which is called to indicate that clean up can and should occur.

      Attachments

        Issue Links

          is related to

          Sub-task - The sub-task of the issue WFLY-2082 Ensure any connection used for LDAP authentication is re-used for loading the roles.

          • Major - To be worked after higher priority work items are addressed. When the severity is high and the effort to change it is low to moderate, this term is chosen. Issues in this category likely have an existing workaround but implementation or execution may be non-trivial.
          • Closed

          Activity

            People

              darran.lofthouse@redhat.com Darran Lofthouse
              darran.lofthouse@redhat.com Darran Lofthouse
              Votes:
              0 Vote for this issue
              Watchers:
              2 Start watching this issue

              Dates

                Created:
                Updated:
                Resolved: