-
Notifications
You must be signed in to change notification settings - Fork 587
New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
Liberty support for JAAS Login Module embedded in Resource Adapter #9013
Comments
List of Steps to complete or get approvals / sign-offs for Onboarding to the Liberty release (GM date)Instructions:
TARGET COMPLETION DATE Before Development Starts or 8 weeks before Onboarding
TARGET COMPLETION DATE 3 weeks before Onboarding
TARGET COMPLETION DATE ** 3 weeks before Onboarding**
TARGET COMPLETION DATE 2 weeks before Onboarding
APPROVALS with TARGET COMPLETION DATE 2 to 1 week before OnboardingPrereq: You must have the Design Approved or No Design Approved label on the GitHub Epic.
TARGET COMPLETION DATE 1 week before Onboarding
NOT REQUIRED FOR A FEATURE
Related Deliverables TARGET COMPLETION DATE General Availability
|
WAD actions/fedback from 1/20
|
@njr-11 Thank you for the STE slides. I've approved this feature. |
Serviceability Approval Comment - Please answer the following questions for serviceability approval:
No, this information was covered in the Skills Transfer doc, not the WAD/Upcoming Feature Overview doc.
Login module configured to be loaded from both shared library and application/resource adapter
CICS Transaction Gateway team (outside of our org). The SVT contact person is Rumana Haque.
WAS L2: sec |
approving on understanding that @rumanaHaque will not approve SVT if serviceability issues are found. |
Fred indicated that no ID is required. Approving. |
The CICS Team in India completed the SVT for this Feature. Got an email from Reshmi George from that team, which stated that they had completed the testing of CTG Identity Propagation tests with Liberty version Open Liberty Version 20.0.0.4 - (20.0.0.4-202003162010). The functionality worked as expected and there were no issues found. Since SVT is complete, adding the SVT Focal Point approval. |
Both RFE's mentioned in the description have been closed as delivered. |
devWorks RFE Provide support for JAAS Login Module in j2c resources 98658
devWorks RFE Liberty profile classloader JAAS 83363
link to UFO design document: https://ibm.box.com/s/o6xfys23er5k0s697hua9p6tpcwuovce
CICS TG (CTG) resource adapter (RA) is not working properly on Liberty in some use cases because Liberty doesn't currently support the embedding of JAAS login modules (LM) in RAs. This lack of support is causing CTG identity propagation to fail. Although it is possible to workaround this limitation by extracting the LM into a jar and placing in a shared library, the connector spec requires the ability to embed an LM in an RA:
D.3.1 JAAS Modules
A resource adapter provider can provide a resource adapter-specific custom implementation of a JAAS module. The connector architecture recommends that a resource adapter provider provide a custom JAAS module when the underlying EIS supports an authentication mechanism that is EIS specific and is not supported by an application server. A custom JAAS module can be packaged together with a resource adapter and can be pluggable into an application server using the JAAS architecture.
The text was updated successfully, but these errors were encountered: