Value | Recommendation |
Initialization | Initialization method. Whenever a user signs in to TDV, each registered LoginModule class is instantiated and its initialization method is called. |
subject | |
callbackHandler | |
sharedState | All operating LoginModules are passed a copy of a Map<String,?> that has been initialized with all of the channel properties for that connection (HTML headers and others). If you want an authentication module to validate a particular channel type, populate the extra Transport-Type channel property with one of these constants: http, jms or db (for JDBC/ODBC/ADO.NET). |
options | Each LoginModule instance is passed a Map<String,?> containing its configuration parameters. |
Login | The method where the module decides login status. The three possible outcomes are: • Pass—The login method returns TRUE. • Fail—The method throws a LoginException • Neither—The login module returns FALSE to disqualify itself from the sign-on process. For example, a LoginModule designed to validate JDBC connections where the user is authenticating through a Web service might then return FALSE. |
Commit | If no exceptions occur, the sign-on is considered successful, and each module can add whatever security credentials it wants to the Subject instance identified in the initialize method. |
Abort | If any LoginModule fails, that module's abort method is called to allow the module to release any resources it might be holding. |
Logout | The method to call when the user signs out. |