Details
-
Improvement
-
Status: Closed
-
Major
-
Resolution: Won't Fix
-
3.0.0
-
None
-
None
Description
In some cases the user is already authenticated in some other way and a JAAS LoginModule should only retrieve the roles of a user.
For this case it makes sense to introduce an option like "checkCredentials" or "authenticate" with default to true. If it is set to false in a jaas realm module config then the credentials should not be validated.