org.jboss.security.auth.spi
Class DatabaseCertLoginModule

java.lang.Object
  extended by org.jboss.security.auth.spi.AbstractServerLoginModule
      extended by org.jboss.security.auth.spi.BaseCertLoginModule
          extended by org.jboss.security.auth.spi.DatabaseCertLoginModule
All Implemented Interfaces:
LoginModule

public class DatabaseCertLoginModule
extends BaseCertLoginModule

A Certificate Login Module that gets its role information from a database. This module is the functional equivelant of the DatabaseServerLoginModule minus the usersQuery.

Version:
$Revision: 1.2.4.3 $
Author:
Jason Essington, Scott.Stark@jboss.org
See Also:
DatabaseServerLoginModule

Field Summary
protected  boolean suspendResume
          Whether to suspend resume transactions during database operations
 
Fields inherited from class org.jboss.security.auth.spi.AbstractServerLoginModule
callbackHandler, log, loginOk, options, principalClassName, sharedState, subject, unauthenticatedIdentity, useFirstPass
 
Constructor Summary
DatabaseCertLoginModule()
           
 
Method Summary
protected  Group[] getRoleSets()
          Subclasses need to override this to provide the roles for authorization
 void initialize(Subject subject, CallbackHandler callbackHandler, Map sharedState, Map options)
          Override the super version to pickup the following options after first calling the super method.
 
Methods inherited from class org.jboss.security.auth.spi.BaseCertLoginModule
commit, getAliasAndCert, getCredentials, getIdentity, getUsername, login, validateCredential
 
Methods inherited from class org.jboss.security.auth.spi.AbstractServerLoginModule
abort, createGroup, createIdentity, getUnauthenticatedIdentity, getUseFirstPass, logout
 
Methods inherited from class java.lang.Object
clone, equals, finalize, getClass, hashCode, notify, notifyAll, toString, wait, wait, wait
 

Field Detail

suspendResume

protected boolean suspendResume
Whether to suspend resume transactions during database operations

Constructor Detail

DatabaseCertLoginModule

public DatabaseCertLoginModule()
Method Detail

initialize

public void initialize(Subject subject,
                       CallbackHandler callbackHandler,
                       Map sharedState,
                       Map options)
Description copied from class: BaseCertLoginModule
Override the super version to pickup the following options after first calling the super method. option: securityDomain - the name of the SecurityDomain to obtain the trust and keystore from. option: verifier - the class name of the X509CertificateVerifier to use for verification of the login certificate

Specified by:
initialize in interface LoginModule
Overrides:
initialize in class BaseCertLoginModule
Parameters:
options - - dsJndiName: The name of the DataSource of the database containing the Principals, Roles tables rolesQuery: The prepared statement query, equivalent to: "select Role, RoleGroup from Roles where PrincipalID=?"
subject - the Subject to update after a successful login.
callbackHandler - the CallbackHandler that will be used to obtain the the user identity and credentials.
sharedState - a Map shared between all configured login module instances
See Also:
SecurityDomain, X509CertificateVerifier

getRoleSets

protected Group[] getRoleSets()
                       throws LoginException
Description copied from class: BaseCertLoginModule
Subclasses need to override this to provide the roles for authorization

Overrides:
getRoleSets in class BaseCertLoginModule
Returns:
Group[] containing the sets of roles
Throws:
LoginException
See Also:
DatabaseServerLoginModule.getRoleSets()


Copyright © 2002 JBoss Group, LLC. All Rights Reserved.