You can specify different authentication service components for individual security domains in EAServer 6.0 using a custom authentication service component. For example, to configure the security domain named bar to use a custom authentication service component, choose an authentication method of “cts-auth”, see “Login methods”, and enter the name of the customized service component. All users registered under the bar domain are authenticated by this component.
As an example, if you require the client user name to match a remote database user name, code the component to retrieve the client user name and password and attempt to log in to the remote database.
The security domain delegates authentication requests to this component or class:
If using a CORBA component, specify its name in the form “MyPackage/MyComp”. The component must implement the CtsSecurity::AuthService IDL interface.
This interface contains the method checkSession. Your code for this method can check the client’s user name and password and the status of other authentication checks, that is, whether the client’s credentials have passed OS authentication or SSL authentication checks. Your code can perform additional authentication checks and auditing. For more information, see the documentation for the CtsSecurity::AuthService IDL interface.
You can also use a Java class with the simplified authenticate API, which is recommended if your implementation is in Java, rather than using a component. If you use a Java class, specify its fully qualified class name. The class must contain a method with the signature:
public boolean authenticate(String username, String password)
{
...
}
