Hi,<br>
i'm part of the jGuard project and a user of Xwiki (through our website <a href="http://www.jguard.net">www.jguard.net</a> hosted and powered by XWiki).<br>
jGuard implements JAAS and provide an easy way to use it in a webapp context.<br>
that's right that Xwiki security apis differs from the JAAS apis.<br>
but the concept involved in the Xwiki apis, are closed of the JAAS and jGuard ones.<br>if you've got some interest by adapting the XWiki apis to JGuard (an JAAS implicitly), i can help you to do it.<br>
but this adapter will not be an &quot;official&quot; Xwiki way....<br>
<br>
hope it helps,<br>
<br>
Charles GAY(jGuard team).<br>
<br><div><span class="gmail_quote">On 4/25/06, <b class="gmail_sendername">THOMAS, BRIAN M (SBCSI)</b> &lt;<a href="mailto:bt0008@att.com">bt0008@att.com</a>&gt; wrote:</span><blockquote class="gmail_quote" style="border-left: 1px solid rgb(204, 204, 204); margin: 0pt 0pt 0pt 0.8ex; padding-left: 1ex;">
We are standardizing on the Java Authentication and Authorization<br>Service (JAAS).&nbsp;&nbsp;I thought I heard that XWiki supports the Pluggable<br>Authentication Modules (PAM) standard, but haven't found any reference<br>to it in the docs.&nbsp;&nbsp;Further, there are some articles out about
<br>integrating JAAS into Tomcat, which is another thing to think about.&nbsp;&nbsp;We<br>actually are considering at least two methods here - a centralized PIN<br>server and a RADIUS server for SecurID access, and both have clients
<br>that implement the JAAS interfaces.<br><br>There are a couple of strategies that I could probably try:&nbsp;&nbsp;one is just<br>to use the JAAS/Tomcat integration route.&nbsp;&nbsp;That would seem to give the<br>most bang-per-buck, but that would (I think) not allow controls at the
<br>level of granularity that XWiki does, or would actually take controls<br>away from the XWiki rights system.<br><br>Another (actually my first idea) is to implement the various<br>com.xpn.xwiki.user.api interfaces (XWikiAuthService, XWikiGroupService,
<br>and XWikiRightService) with JAAS calls.<br><br>Anyone have any experience with this?<br><br>brain[sic]<br><br><br><br><br>--<br>You receive this message as a subscriber of the <a href="mailto:xwiki-users@objectweb.org">
xwiki-users@objectweb.org</a> mailing list.<br>To unsubscribe: mailto:<a href="mailto:xwiki-users-unsubscribe@objectweb.org">xwiki-users-unsubscribe@objectweb.org</a><br>For general help: mailto:<a href="mailto:sympa@objectweb.org">
sympa@objectweb.org</a>?subject=help<br>ObjectWeb mailing lists service home page: <a href="http://www.objectweb.org/wws">http://www.objectweb.org/wws</a><br><br><br></blockquote></div><br>