Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Developing a custom UserRegistry #2284

Closed
ggam opened this issue Aug 7, 2020 · 9 comments
Closed

Developing a custom UserRegistry #2284

ggam opened this issue Aug 7, 2020 · 9 comments

Comments

@ggam
Copy link

ggam commented Aug 7, 2020

I tried to develop a custom UserRegistry but I wasn't able to do it.

There are some articles on ibm.com (https://www.ibm.com/support/knowledgecenter/SS7K4U_liberty/com.ibm.websphere.wlp.zseries.doc/ae/twlp_sec_custmr.html) but they mess a lot with OSGi and I couldn't make it work. A new guide for this topic would be greatly appreciated.
@dmuelle
Copy link
Member

dmuelle commented Aug 11, 2020

Thanks for your feedback @ggam, we are looking into this. I'm researching an alternative solution but waiting on testing.

This was referenced Aug 19, 2020
Closed
Closed
@dmuelle
Copy link
Member

dmuelle commented Aug 26, 2020

closing this issue, work for a new task topic on this process is being tracked in #2418

@dmuelle dmuelle closed this as completed Aug 26, 2020
@lauracowen
Copy link
Member

lauracowen commented Nov 6, 2020
edited
Loading

@ggam Can I ask why you've chosen to write a custom user registry rather than using an existing one in some form? Or did you mean you already have a custom user registry that you want to configure to work with your app on Liberty?

@ggam
Copy link
Author

ggam commented Nov 6, 2020

@lauracowen I need to get users from a database and authenticate via both MP JWT or basic auth. I haven't found a way to get users from the DB with the default registries (only LDAP).

I can use Jakarta Security to get the users from the database, but Open Liberty disables MP JWT when Jakarta Security is in place.

@Emily-Jiang
Copy link
Member

@ggam I am surprised that your obeservation of "Open Liberty disables MP JWT when Jakarta Security is in place.", which should not be the expected behaviour. When you say Jakarta Security, do you mean Jakarta EE Security such as @RolesAllowed etc? If yes, it should not be case as MP JWT has to rely on that to secure applications. If no, can you explain with more details. If you have github repo to demonstrate this, it will be very much appreciated! Thanks you for reporting this issue!

@Emily-Jiang Emily-Jiang reopened this Nov 10, 2020
@Emily-Jiang
Copy link
Member

reopened this for further clarification

@Emily-Jiang
Copy link
Member

@ggam we are going to close this issue since there is no response from you for nearly a month. Please reopen with the response for the questions listed in this comment.

@ggam
Copy link
Author

ggam commented Dec 9, 2020 via email

@c-koell
Copy link

c-koell commented Jul 26, 2021

@Emily-Jiang I think @ggam described the same issues as we had also before. OpenLiberty/open-liberty#11058
If the HAM is activated the mpJwt Security will be ignored.

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees
No one assigned
Labels
None yet
Projects
None yet
Milestone
No milestone
Development

No branches or pull requests
5 participants
@ggam @lauracowen @c-koell @Emily-Jiang @dmuelle