How to propagate authentication from mod_cluster/ajp or mod_jk to JBoss EAP 7 with Legacy Security
Issue
- How to configure the security-domain to accept the incoming authenticated users
- How to configure something similar to
tomcatAuthentication=false
- How to allow bypassing its authentication and correctly populate
getRemoteUser
andgetUserPrincipal
Environment
- Red Hat JBoss Enterprise Application Platform (EAP)
- 7.x
- Legacy Security
- Front-end Apache authentication
- Apache JServ Protocol (AJP) connection
- Roles / authorization provided by JBoss EAP.
Subscriber exclusive content
A Red Hat subscription provides unlimited access to our knowledgebase, tools, and much more.