users@glassfish.java.net

Custom Login Mechanism

From: Duke Javastein <duke.javastein_at_gmail.com>
Date: Thu, 9 Nov 2006 21:57:14 +0330

Hi,

I want to create a custom login mechanism that is not any of the 4
standard login mechanisms explained in the Servlet specification. In
order for this login mechanism to work properly, it is necessary to
have an end result like if the user has authenticated via one of those
4 login mechanisms, i.e: it is necessary for the getRemoteUser,
isUserInRole, and getUserPrincipal to work correctly. Also I need the
security context to be propagated to EJBs, etc. A result of this also
would be that the annotation-based security for EJBs should also work
correctly.

Could someone please give me some pointers or probably example code on
this subject?

With best regards,
Duke