Newsletter sign-up
View all newsletters

Enterprise Java Newsletter
Stay up to date on the latest tutorials and Java community news posted on JavaWorld

JavaWorld Daily Brew

EJB, custom Realm and LoginModule, cache authentication result



I created custom Realm and LoginModule for Glassfish application server. I took as example this URL http://developers.sun.com/appserver/reference/techart/as8_authentication...

As I see on every lookup and method invocation from application client it sends my login and password to server. I want to say that EJB authentication behavior is not like with “http session”.

Every request cause my authenticateUser() method invocation. I cannot afford to check login credentials on every such request. As result I think I need store login result and all user data in some temporarily storage. I can store it in memory and start another process to delete expired “Sessions” but I want store it on disk.

And my question is – is there some ready implementation for this task? Or how do I cache authentication results using cluster aware methods?