The Adapter Framework default modules use the component-managed sign-on scenario as the security model.
The references refer to chapter 7.4.2 of the document J2EE Connector Architecture Specification, Final Version 1.0.
You can download this document at java.sun.com/j2ee/connector.
The user name and password belong to a technical user that operates the Adapter Framework. This information does not relate to an end user.
Principal propagation is not currently supported.
You can add this information in the metadata for the adapter configuration. This configuration data is read for each communication channel and used to log on to systems.
More information: Adapter Metadata
The references in the table refer to chapters 7 (Security Architecture) and 8 (Security Contract) of the document J2EE Connector Architecture Specification, Final Version 1.0.
You can download this document at java.sun.com/j2ee/connector.
Security Architecture and Security Contract
Requirement | JCA | PI | Comments | ReferencePage |
---|---|---|---|---|
Component-managed sign-on scenario |
Possible |
Should be used |
Use the transferred user name and password for the logon procedure. You can enhance or replace these in your own channel configuration, for example, with an alias or the keystore. |
83 |
ManagedConnection Factory.createManaged Connection |
Mandatory |
Mandatory |
createManaged Connection() uses the javax.security.auth. Subject object for authentication. The resource adapter must also support this property in the Adapter Framework. |
97 |
Reauthentication |
Possible |
Optional |
The Adapter Framework does not use reauthentication. |
97 |
Deployment descriptor authentication values |
Mandatory |
Mandatory |
Must be set to determine which authentication mechanism is to be used. |
97 |