Announcement Announcement Module
Collapse
No announcement yet.
kerberos authentication with spring security Page Title Module
Move Remove Collapse
X
Conversation Detail Module
Collapse
  • Filter
  • Time
  • Show
Clear All
new posts

  • kerberos authentication with spring security

    I am trying to configure SPNEGO/Kerberos authentication in Spring security. I have got working with JAAS implementation and now need to migrate to SSO using kerberos authentication. I am using JBoss 5.1.0 AS, I am looking for a way to specify the the policy-name in my spring security file which was possible with org.springframework.security.authentication.jaas.J aasAuthenticationProvider. But could'nt find a property to set policy-name (defined in Jboss login-config.xml) rather it expects to specify properties like seriveprincipal and keytab

    this is what I have got :

    <bean id="kerberosServiceAuthenticationProvider"
    class="org.springframework.security.extensions.ker beros.KerberosServiceAuthenticationProvider">
    <property name="ticketValidator">
    <bean class="org.springframework.security.extensions.ker beros.SunJaasKerberosTicketValidator">
    <property name="servicePrincipal" value="[email protected]" />
    <property name="keyTabLocation" value="classpath:http-java.keytab" />
    </bean>
    </property>
    </bean>

    for JAAS i was using :

    <bean id="jaasAuthenticationProvider"
    class="org.springframework.security.authentication .jaas.JaasAuthenticationProvider">
    <property name="loginContextName">
    <value>oracle-login</value> <!-- value should be same as in application-policy in JBoss login-config.xml -->
    </property>
    <property name="loginConfig">
    <value>/WEB-INF/login.conf</value> <!-- filler, not used at runtime -->
    </property>
    <property name="callbackHandlers">
    <list>
    <bean class="org.springframework.security.authentication .jaas.JaasNameCallbackHandler"/>
    <bean class="org.springframework.security.authentication .jaas.JaasPasswordCallbackHandler"/>
    </list>
    </property>
    <property name="authorityGranters">
    <list>
    <bean class="com.mycomp.jboss.login.SpringAuthorityGrant er"/>
    </list>
    </property>
    </bean>


    any idea how to use my jboss settings from my applications?
Working...
X