19.2. JAAS Login Modules

JBoss Portal comes with a few implementations of JAAS LoginModule interface

19.2.1. org.jboss.portal.identity.auth.IdentityLoginModule

This is the standard portal LoginModule implementation that uses portal identity modules in order to search users and roles. By default it is the only configured LoginModule in the portal authentication stack. Its behavior can be altered with the following options:
  • userModuleJNDIName - JNDI name of portal UserModule.
  • roleModuleJNDIName - JNDI name of portal RoleModule.
  • membershipModuleJNDIName - JNDI name of portal MembershipModule.
  • additionalRole - additional user Principal that will be added to user Subject. This is important as in default portal configuration it is the role that portal servlet is secured with.
  • havingRole - only users belonging to role specified with this option will be authenticated.
  • unauthenticatedIdentity - the principal to use when a null username and password are seen.

Note

IdentityLoginModule extends org.jboss.security.auth.spi.UsernamePasswordLoginModule so if you are familiar with JBossSX you can apply few other options like "password-stacking". Please refer to JBossSX documentation.