geronimo-dev mailing list archives

Site index · List index
Message view « Date » · « Thread »
Top « Date » · « Thread »
From "David Jencks (JIRA)" <j...@apache.org>
Subject [jira] Commented: (GERONIMO-3641) NamedUPCredentialLoginModule vs ConfiguredIdentityNamedUsernamePasswordLoginModule
Date Wed, 28 Nov 2007 20:35:45 GMT

    [ https://issues.apache.org/jira/browse/GERONIMO-3641?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel#action_12546376
] 

David Jencks commented on GERONIMO-3641:
----------------------------------------

ConfiguredIdentityNamedUsernamePasswordLoginModule is pretty much essential for the TCK. 
You use it in case you want to supply credentials for the server when its calling another
server, e.g. a remote web service and you are relying on the server credentials rather than
the user credentials.  You can get a similar effect with a run-as where the run-as subject
has been set up with NamedUPCredentialLoginModule but using ConfiguredIdentityNamedUsernamePasswordLoginModule
means you can avoid the run-as.

> NamedUPCredentialLoginModule vs ConfiguredIdentityNamedUsernamePasswordLoginModule
> ----------------------------------------------------------------------------------
>
>                 Key: GERONIMO-3641
>                 URL: https://issues.apache.org/jira/browse/GERONIMO-3641
>             Project: Geronimo
>          Issue Type: Bug
>      Security Level: public(Regular issues) 
>          Components: security
>    Affects Versions: 2.0.x, 2.1
>            Reporter: Vamsavardhana Reddy
>             Fix For: 2.0.x, 2.1
>
>
> I see that ConfiguredIdentityNamedUsernamePasswordLoginModule and NamedUPCredentialLoginModule
are added to geronimo codebase around the same time (rev 159325 and rev 159560).  The difference
between the two is that NamedUPCredentialLoginModule uses the user supplied username and password
where as ConfiguredIdentityNamedUsernamePasswordLoginModule gets the username and password
from options supplied to the login module.  NamedUPCredentialLoginModule is used by the Security
realms portlet whereas there are no references to ConfiguredIdentityNamedUsernamePasswordLoginModule
in the codebase.  I guess one of them (most likely ConfiguredIdentityNamedUsernamePasswordLoginModule)
is redundant and it should be eliminated.  What am I missing?

-- 
This message is automatically generated by JIRA.
-
You can reply to this email to add a comment to the issue online.


Mime
View raw message