Using JAAS with Integration Server
The Java Authorization and Authentication Service (JAAS) provides a standards-based mechanism for deploying custom login modules. Using JAAS, you can write your own custom login module to take over the Integration Server authentication process.
By making use of the JAAS framework for extending Java code-based security, you can customize Integration Server authentication so that multiple login modules can be called during the authentication process. JAAS allows you to specify:
The order in which custom login modules are called.
Whether a login module is required or optional.
The points at which control can pass from a login module back to the controlling application.
When implementing custom login modules using JAAS, you must:
Write the login module.
Configure your login module within the appropriate login context in the JAAS configuration file.
Add the JAR file containing the login module to the
Integration Server classpath.
Note: A JAAS custom login module deals only with
authentication of
Integration Server users. You cannot use the JAAS feature for
Integration Server authorization;
Integration Server uses ACLs for authorization. For more information, see
Configuring Integration Server for Secure Communication.