Develop custom login modules for a system login configuration for JAAS


For WAS, multiple Java Authentication and Authorization Service (JAAS) plug-in points exist for configuring system logins. WAS uses system login configurations to authenticate incoming requests, outgoing requests, and internal server logins.

Application login configurations are called by Java EE applications for obtaining a Subject that is based on specific authentication information. This login configuration enables the application to associate the Subject with a specific protected remote action. The Subject is picked up on the outbound request processing.

The following list identifies the main system plug-in points. If we write a login module that adds information to the Subject of a system login, these are the main login configurations to plug in:

 

 

Related concepts


Security attribute propagation

 

Related tasks


Set inbound identity mapping
Customizing a server-side Java Authentication and Authorization Service authentication and login configuration
Set outbound identity mapping to a different target realm
Use the Java Authentication and Authorization Service model for Web authentication

 

Related


System login configuration entry settings for Java Authentication and Authorization Service