Developing JAAS custom login modules for a system login configuration

For a Liberty server, multiple Java™ Authentication and Authorization Service (JAAS) plug-in points exist for configuring system logins. Liberty uses system login configurations to authenticate incoming requests. You can develop a custom JAAS login module to add information to the Subject of a system login configuration.

About this task

Application login configurations are called by servlet applications for obtaining a Subject that is based on specific authentication information. When you write a login module that plugs into a Liberty application login or system login configuration, you must develop login configuration logic that knows when specific information is present, and how to use the information. See JAAS configuration and JAAS login modules for more details.

To develop a JAAS custom login module for a system login configuration, follow the steps in the procedure:

Procedure

What to do next

Add your custom login module into the WEB_INBOUND, and DEFAULT Java Authentication and Authorization Service (JAAS) system login configurations of the server.xml file. Put the custom login module class in a JAR file, for example, customLoginModule.jar, then make the JAR file available to the Liberty server. See Configuring a JAAS custom login module for Liberty.


Icon that indicates the type of topic Task topic



Timestamp icon Last updated: Monday, 5 December 2016
http://www14.software.ibm.com/webapp/wsbroker/redirect?version=cord&product=was-libcore-mp&topic=twlp_dev_custom_jaas
File name: twlp_dev_custom_jaas.html