Can anybody give me an insight as to how to integrate JAAS in JSPs and Servlets?Will I have to write my own Callbackhandler for Biometric Authentication?
I want to implement a Biometric Gateway Authentication for which I am thinking of using JAAS. For this system there are two levels of authentication,a password based authentication followed by a biometric authentication. Both password and biometric data will be stored in an Oracle database.This system has to work using JSPs and Servlets.I want to know how will I use JAAS and JSP + Servlets.
Will I have to write my own Callbackhandler for Biometric Authentication?
Probably yes. How JAAS integrates with web app security is not part of the servlet spec, and thus varies from server to server. E.g., Tomcat uses the JAASRealm for this.
Please do not reply to year old threads. Please open a new thread in appropriate forum.
As for your question, Ulf already pointed out in his reply that JAAS is a vast topic and each web container has its own configurations. You will have to check the web containers documentation for more details.