Configuring multiple Cred2PrincipalResolver
Stephen A. Cochran
stephen.a.cochran at Dartmouth.EDU
Thu Feb 1 15:01:58 EST 2007
I'm adding our first sql based authentication handler to our test
server, and it's raising a question in my mind. Currently we have
three ldap auth handlers configured, and one
DartmouthUserPassCred2PrincipalResolver that works for all of them.
This new auth handler also creates UsernamePasswordCredentials, but
it requires a different Cred2PrincipalResolver.
The comments in the deployerConfigContext state that the resolvers
will be tried in order until one that can handle the specific type of
credentials presented. That to me sounds like the SQL resolver will
never be used since the standard Dartmouth one that is set up for the
LDAP auth handlers would match first.
Am I understanding this correctly? And if so what's the solution? I'm
guessing that I would have to create a new class, something like
SQLUsernamePasswordCredientials, so that the standard LDAP resolver
wouldn't match as a handling those credentials, and it would then
look down the chain.
Steve
More information about the cas
mailing list