Improve single user login.

[lgpl/argeo-commons.git] / org.argeo.cms / src / org / argeo / cms / auth / SingleUserLoginModule.java

diff --git a/org.argeo.cms/src/org/argeo/cms/auth/SingleUserLoginModule.java b/org.argeo.cms/src/org/argeo/cms/auth/SingleUserLoginModule.java
index e3da327e6e2e4e1db08c6c004507828d0082005a..8583bc194f7dde537f03de505a444298833c4ae1 100644 (file)
--- a/org.argeo.cms/src/org/argeo/cms/auth/SingleUserLoginModule.java
+++ b/org.argeo.cms/src/org/argeo/cms/auth/SingleUserLoginModule.java
@@ -21,6 +21,7 @@ import org.argeo.api.security.DataAdminPrincipal;
 import org.argeo.cms.internal.auth.ImpliedByPrincipal;
 import org.argeo.naming.LdapAttrs;
 import org.argeo.osgi.useradmin.IpaUtils;
+import org.osgi.service.useradmin.Authorization;
 
 public class SingleUserLoginModule implements LoginModule {
        private final static Log log = LogFactory.getLog(SingleUserLoginModule.class);
@@ -69,6 +70,10 @@ public class SingleUserLoginModule implements LoginModule {
                principals.add(principal);
                principals.add(new ImpliedByPrincipal(NodeConstants.ROLE_ADMIN, principal));
                principals.add(new DataAdminPrincipal());
+               
+               Authorization authorization = new SingleUserAuthorization();
+               subject.getPrivateCredentials().add(authorization);
+
                return true;
        }