JBoss Application Server ships with PicketLink module for enabling SAML based SSO. PicketLink is an open source module and it is SAML v2.0 complained, for more information about 'PicketLink' please visit picketlink.org . Now the requirement is to enable SAML based SSO in JBoss Application Server where IDP is OKTA . Before we start enabling this, one should have an OKTA organization, a free developer organization can be created here . If you already have an OKTA organization, you need...
Tomcat by default ships with a couple of Realm implementations like, JDBCRealm , DataSourceRealm , and JNDIRealm etc. But sometimes it is not sufficient for your organization's requirements and you are required to apply your own implementations. How to implement a custom realm in Tomcat? You can create your own realm by extending RealmBase class; here I am going to show an example of implementing a new Realm in Tomcat. Here is a sample code snip for implementing a new...
Recently I was facing an issue, the connection pool of datasource was failing to establish a connection with the DB due to account lockout. There are many application servers like Tomcat, JBoss, WebSphere, etc. where you cannot implement the connection pool using multiple users. So, how can we overcome such issue? Yes, the best solution is to configure the db-user to never lockout but this will be against some company security policy where you cannot set the user account to...
Once I worked on a project where in the existing environment I needed to configure the JBoss Enterprise Application Server to communicate with WebSphere MQ where the WebSphere MQ was supposed to be communicating with Mainframe system using cluster queue of WebSphere. Initially I was blind, as I was not able to understand how I could configure JBoss to communicate with MQ. But after some research, I came to learn that it is possible to integrate JBoss with WebSphere MQ...
Recently, I was searching for a solution to configure the security domain of Red Hat JBoss Enterprise Application Platform with the local operating system based user registry so that the application could directly authenticate its users with local operating system users. I understood that it would be difficult to implement a generic solution, as authentication mechanisms are strikingly different between Windows and Unix/Linux. After checking several blogs and forums, I decided to implement this using JPAM for Unix/Linux and Waffle...
Article
