You are viewing a plain text version of this content. The canonical link for it is here.

Posted to dev@geronimo.apache.org by "David Jencks (JIRA)" <ji...@apache.org> on 2007/11/28 21:35:45 UTC

[jira] Commented: (GERONIMO-3641) NamedUPCredentialLoginModule vs ConfiguredIdentityNamedUsernamePasswordLoginModule

    [ https://issues.apache.org/jira/browse/GERONIMO-3641?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel#action_12546376 ] 

David Jencks commented on GERONIMO-3641:
----------------------------------------

ConfiguredIdentityNamedUsernamePasswordLoginModule is pretty much essential for the TCK.  You use it in case you want to supply credentials for the server when its calling another server, e.g. a remote web service and you are relying on the server credentials rather than the user credentials.  You can get a similar effect with a run-as where the run-as subject has been set up with NamedUPCredentialLoginModule but using ConfiguredIdentityNamedUsernamePasswordLoginModule means you can avoid the run-as.

> NamedUPCredentialLoginModule vs ConfiguredIdentityNamedUsernamePasswordLoginModule
> ----------------------------------------------------------------------------------
>
>                 Key: GERONIMO-3641
>                 URL: https://issues.apache.org/jira/browse/GERONIMO-3641
>             Project: Geronimo
>          Issue Type: Bug
>      Security Level: public(Regular issues) 
>          Components: security
>    Affects Versions: 2.0.x, 2.1
>            Reporter: Vamsavardhana Reddy
>             Fix For: 2.0.x, 2.1
>
>
> I see that ConfiguredIdentityNamedUsernamePasswordLoginModule and NamedUPCredentialLoginModule are added to geronimo codebase around the same time (rev 159325 and rev 159560).  The difference between the two is that NamedUPCredentialLoginModule uses the user supplied username and password where as ConfiguredIdentityNamedUsernamePasswordLoginModule gets the username and password from options supplied to the login module.  NamedUPCredentialLoginModule is used by the Security realms portlet whereas there are no references to ConfiguredIdentityNamedUsernamePasswordLoginModule in the codebase.  I guess one of them (most likely ConfiguredIdentityNamedUsernamePasswordLoginModule) is redundant and it should be eliminated.  What am I missing?

-- 
This message is automatically generated by JIRA.
-
You can reply to this email to add a comment to the issue online.

Re: [jira] Commented: (GERONIMO-3641) NamedUPCredentialLoginModule vs ConfiguredIdentityNamedUsernamePasswordLoginModule

Posted by Vamsavardhana Reddy <c1...@gmail.com>.

Thanks for the clarification David.

++Vamsi

On Nov 29, 2007 2:05 AM, David Jencks (JIRA) <ji...@apache.org> wrote:

>
>    [
> https://issues.apache.org/jira/browse/GERONIMO-3641?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel#action_12546376]
>
> David Jencks commented on GERONIMO-3641:
> ----------------------------------------
>
> ConfiguredIdentityNamedUsernamePasswordLoginModule is pretty much
> essential for the TCK.  You use it in case you want to supply credentials
> for the server when its calling another server, e.g. a remote web service
> and you are relying on the server credentials rather than the user
> credentials.  You can get a similar effect with a run-as where the run-as
> subject has been set up with NamedUPCredentialLoginModule but using
> ConfiguredIdentityNamedUsernamePasswordLoginModule means you can avoid the
> run-as.
>
> > NamedUPCredentialLoginModule vs
> ConfiguredIdentityNamedUsernamePasswordLoginModule
> >
> ----------------------------------------------------------------------------------
> >
> >                 Key: GERONIMO-3641
> >                 URL: https://issues.apache.org/jira/browse/GERONIMO-3641
> >             Project: Geronimo
> >          Issue Type: Bug
> >      Security Level: public(Regular issues)
> >          Components: security
> >    Affects Versions: 2.0.x, 2.1
> >            Reporter: Vamsavardhana Reddy
> >             Fix For: 2.0.x, 2.1
> >
> >
> > I see that ConfiguredIdentityNamedUsernamePasswordLoginModule and
> NamedUPCredentialLoginModule are added to geronimo codebase around the same
> time (rev 159325 and rev 159560).  The difference between the two is that
> NamedUPCredentialLoginModule uses the user supplied username and password
> where as ConfiguredIdentityNamedUsernamePasswordLoginModule gets the
> username and password from options supplied to the login module.
>  NamedUPCredentialLoginModule is used by the Security realms portlet whereas
> there are no references to
> ConfiguredIdentityNamedUsernamePasswordLoginModule in the codebase.  I guess
> one of them (most likely ConfiguredIdentityNamedUsernamePasswordLoginModule)
> is redundant and it should be eliminated.  What am I missing?
>
> --
> This message is automatically generated by JIRA.
> -
> You can reply to this email to add a comment to the issue online.
>
>