I’ve been trying to integrate our current application that runs on JbossEAP7 with Okta Oauth2 to perform as a resource server. Our current setup performs authentication through LDAP using a custom module that extends org.jboss.security.auth.spi.UsernamePasswordLoginModule. this is configured as part of the jboss Standalone.xml as part of its security domain, Sample:
<security-domain name="SecurityService" cache-type="default"> <authentication> <login-module code="com.authentication.jboss.LdapCustomLoginModule" flag="required" module="ldap"> <module-option name="configFile" value="xxxxx"/> <module-option name="baseDNPrefix" value="xxxxx"/> <module-option name="baseDNSuffix"xxxxx"/> </login-module> </authentication> </security-domain>
I have not found any resources online that point me to the right authentication class that I can extent for JWT token verification.
Has anyone tried to achieve something similar, any help in the right refection would be much appreciated.