I have implemented a LoginModule to do some custom authentication, and authentication using the LoginContext class login () method Called. Login modules login () and comet () are successfully called, but instead of being able to use the web app, I'm immediately being redirected to the login page. Request.getUserPrincipal () is zero, as well as request.getRemoteUser ().
Any ideas will be highly appreciated. Thanks!
Additional Information
In addition to this, I immediately call loginContext.login () code> loginContext.getSubject ( ). GetPrincipals () gives me a proper list of principals and roles for the user who is currently logged in.
I am using Tomcat 6.0.29 as my server.
A shot in the dark
You have tried to allow such a Policy File
Grant Codebase "File: /myCustomModule.jar" {Permission javax.security.auth.AuthPermission "Modified Principal"; Permission javax.security.auth.AuthPermission "modified publicCredentials"; Permission javax.security.auth.AuthPermission "modified credentials"; }; 
Comments
Post a Comment