RE: [Acegisecurity-developer] Siteminder / Acegi 0.9.0 integration

Thu, 19 Jan 2006 15:58:08 -0800 

 
I am not able to get acegi to work with Siteminder so I turned on debug
mode.
But if I do a request.getHeader("HRID") from my index.jsp I am able to
display my username.
However, acegi  spits out the credential not found exception way before
it even get to the
loadUserByUsername(username) in the DaoAuthenticationProvider.java. I am
really getting frustrated.
  

Paul 


-----Original Message-----
From: [EMAIL PROTECTED]
[mailto:[EMAIL PROTECTED] On Behalf
Of Ray Krueger
Sent: Thursday, January 19, 2006 1:13 PM
To: [email protected]
Subject: Re: [Acegisecurity-developer] Siteminder / Acegi 0.9.0
integration

That is actually just an overly verbose DEBUG statement if you look.

If your Siteminder integration is actually working I would turn off
DEBUG SecurityEnforcementFilter in log4j.

On 1/19/06, Garvey, Paul M (GE Commercial Finance) <[EMAIL PROTECTED]>
wrote:
>
>
>
> Help!,
>  I am having a hard time getting Acegi to work with Siteminder I am 
> getting the following error shown below.
>  I am using appfuse 1.8.2 and deploying my app to JBoss 4.0.0
>
net.sf.acegisecurity.event.authorization.AuthenticationCredentialsNotFou
ndEvent[source=FilterInvocation:
> URL: /mainMenu.html]
>
> 2006-01-18 17:53:18,864 DEBUG
> [net.sf.acegisecurity.intercept.web.SecurityEnforcementFilter]
> Authentication exception occurred; redirecting to authentication entry

> point
>
> net.sf.acegisecurity.AuthenticationCredentialsNotFoundException:
> Authentication credentials were not found in the SecurityContext
>
> at
> net.sf.acegisecurity.intercept.AbstractSecurityInterceptor.credentials
> NotFound(AbstractSecurityInterceptor.java:478)
> at
> net.sf.acegisecurity.intercept.AbstractSecurityInterceptor.beforeInvoc
> ation(AbstractSecurityInterceptor.java:377)
> at
> net.sf.acegisecurity.intercept.web.FilterSecurityInterceptor.invoke(Fi
> lterSecurityInterceptor.java:105)
>  at
> net.sf.acegisecurity.intercept.web.SecurityEnforcementFilter.doFilter(
> SecurityEnforcementFilter.java:197)
>  at
> net.sf.acegisecurity.util.FilterChainProxy$VirtualFilterChain.doFilter
> (FilterChainProxy.java:303)
>  at
> net.sf.acegisecurity.wrapper.SecurityContextHolderAwareRequestFilter.d
> oFilter(SecurityContextHolderAwareRequestFilter.java:50)
>
> at
> net.sf.acegisecurity.util.FilterChainProxy$VirtualFilterChain.doFilter
> (FilterChainProxy.java:303)
>  at
> net.sf.acegisecurity.context.HttpSessionContextIntegrationFilter.doFil
> ter(HttpSessionContextIntegrationFilter.java:220)
>
> at
> net.sf.acegisecurity.util.FilterChainProxy$VirtualFilterChain.doFilter
> (FilterChainProxy.java:303)
>  at
> net.sf.acegisecurity.util.FilterChainProxy.doFilter(FilterChainProxy.j
> ava:173)
>  at
> net.sf.acegisecurity.util.FilterToBeanProxy.doFilter(FilterToBeanProxy
> .java:120)
>  at
> org.apache.catalina.core.ApplicationFilterChain.internalDoFilter(Appli
> cationFilterChain.java:186)
>  at
> org.apache.catalina.core.ApplicationFilterChain.doFilter(ApplicationFi
> lterChain.java:157)
>  at
> org.jboss.web.tomcat.filters.ReplyHeaderFilter.doFilter(ReplyHeaderFil
> ter.java:75)
>  at
> org.apache.catalina.core.ApplicationFilterChain.internalDoFilter(Appli
> cationFilterChain.java:186)
>  at
> org.apache.catalina.core.ApplicationFilterChain.doFilter(ApplicationFi
> lterChain.java:157)
>  at
> org.apache.catalina.core.StandardWrapperValve.invoke(StandardWrapperVa
> lve.java:214)
>  at
> org.apache.catalina.core.StandardValveContext.invokeNext(StandardValve
> Context.java:104)
>  at
> org.apache.catalina.core.StandardPipeline.invoke(StandardPipeline.java
> :520)
>  at
> org.apache.catalina.core.StandardContextValve.invokeInternal(StandardC
> ontextValve.java:198)
>  at
> org.apache.catalina.core.StandardContextValve.invoke(StandardContextVa
> lve.java:152)
>  at
> org.apache.catalina.core.StandardValveContext.invokeNext(StandardValve
> Context.java:104)
>  at
> org.jboss.web.tomcat.security.CustomPrincipalValve.invoke(CustomPrinci
> palValve.java:44)
>  at
> org.apache.catalina.core.StandardValveContext.invokeNext(StandardValve
> Context.java:102)
>  at
> org.jboss.web.tomcat.security.SecurityAssociationValve.invoke(Security
> AssociationValve.java:169)
>  at
> org.apache.catalina.core.StandardValveContext.invokeNext(StandardValve
> Context.java:102)
>  at
> org.apache.catalina.core.StandardPipeline.invoke(StandardPipeline.java
> :520)
>  at
> org.apache.catalina.core.StandardHostValve.invoke(StandardHostValve.ja
> va:137)
>  at
> org.apache.catalina.core.StandardValveContext.invokeNext(StandardValve
> Context.java:104)
>  at
> org.apache.catalina.valves.ErrorReportValve.invoke(ErrorReportValve.ja
> va:118)
>  at
> org.apache.catalina.core.StandardValveContext.invokeNext(StandardValve
> Context.java:102)
>  at
> org.apache.catalina.core.StandardPipeline.invoke(StandardPipeline.java
> :520)
>  at
> org.apache.catalina.core.StandardEngineValve.invoke(StandardEngineValv
> e.java:109)
>  at
> org.apache.catalina.core.StandardValveContext.invokeNext(StandardValve
> Context.java:104)
>  at
> org.apache.catalina.core.StandardPipeline.invoke(StandardPipeline.java
> :520)
>  at
> org.apache.catalina.core.ContainerBase.invoke(ContainerBase.java:929)
>  at
> org.apache.coyote.tomcat5.CoyoteAdapter.service(CoyoteAdapter.java:160
> )
>  at
> org.apache.jk.server.JkCoyoteHandler.invoke(JkCoyoteHandler.java:300)
>  at
> org.apache.jk.common.HandlerRequest.invoke(HandlerRequest.java:374)
>  at
> org.apache.jk.common.ChannelSocket.invoke(ChannelSocket.java:743)
>  at
> org.apache.jk.common.ChannelSocket.processConnection(ChannelSocket.jav
> a:675)
>  at
> org.apache.jk.common.SocketConnection.runIt(ChannelSocket.java:866)
>  at
> org.apache.tomcat.util.threads.ThreadPool$ControlRunnable.run(ThreadPo
> ol.java:683)  at java.lang.Thread.run(Thread.java:534)
> I have the following beans based on the the Sieminder/Acegi
documentation:
> <bean id="filterChainProxy"
> class="net.sf.acegisecurity.util.FilterChainProxy">
>  <property name="filterInvocationDefinitionSource">
>  <value>
>  CONVERT_URL_TO_LOWERCASE_BEFORE_COMPARISON
>  PATTERN_TYPE_APACHE_ANT
> /j_security_check*=httpSessionContextIntegrationFilter,authenticationP
> rocessingFilter 
> /*.html*=httpSessionContextIntegrationFilter,remoteUserFilter,
> securityEnforcementFilter
> /*.jsp=httpSessionContextIntegrationFilter,remoteUserFilter
>  </value>
>  </property>
>  </bean>
> <bean id="filterInvocationInterceptor"
> class="net.sf.acegisecurity.intercept.web.FilterSecurityInterceptor">
>  <property name="authenticationManager"><ref 
> local="authenticationManager"/></property>
>  <property name="accessDecisionManager"><ref 
> local="accessDecisionManager"/></property>
>  <property name="objectDefinitionSource">  <value>  
> CONVERT_URL_TO_LOWERCASE_BEFORE_COMPARISON
>  PATTERN_TYPE_APACHE_ANT
>  /signup.html=admin,normaluser
>  /activeusers.html=admin
>  /clickstreams.jsp*=admin
>  /flushcache.html=admin
>  /reload.html=admin
>  /users.html*=admin
>  /viewstream.jsp*=admin
>  /mainMenu.html=admin,normaluser
>  /**/*=admin,normaluser
>  </value>
>  </property>
>  </bean>
> <bean id="authenticationManager"
> class="net.sf.acegisecurity.providers.ProviderManager">
>  <property name="providers">
>  <list>
>  <ref local="daoAuthenticationProvider"/>
>  </list>
>  </property>
>  </bean>
> <bean id="authenticationProcessingFilter"
> class="net.sf.acegisecurity.ui.webapp.SiteminderAuthenticationProcessi
> ngFilter">
>
> <property name="authenticationManager"><ref 
> local="authenticationManager"/></property>
>  <property
> name="authenticationFailureUrl"><value>/login.jsp?error=true</value></
> property>
>  <property
> name="defaultTargetUrl"><value>/</value></property>
>  <property
> name="filterProcessesUrl"><value>/j_security_check</value></property>
>  <property
> name="siteminderUsernameHeaderKey"><value>HRID</value></property>
>  <property
> name="siteminderPasswordHeaderKey"><value>HRID</value></property>
>  </bean>
> <bean id="daoAuthenticationProvider"
> class="net.sf.acegisecurity.providers.dao.DaoAuthenticationProvider">
>  <property name="authenticationDao"><ref 
> local="jdbcAuthenticationDao"/></property>
>  <property name="userCache"><ref local="userCache"/></property>  
> </bean>
>
>  <!-- Read users from database -->
>  <bean id="jdbcAuthenticationDao"
> class="net.sf.acegisecurity.providers.dao.jdbc.JdbcDaoImpl">
>  <property name="dataSource"><ref bean="dataSource"/></property>  
> <property name="usersByUsernameQuery">  <value>SELECT 
> username,password,enabled FROM users WHERE username = ?</value>  
> </property>  <property name="authoritiesByUsernameQuery">
>  <value>SELECT username,role_name FROM user_role WHERE username = 
> ?</value>  </property>  </bean>
>
>


-------------------------------------------------------
This SF.net email is sponsored by: Splunk Inc. Do you grep through log
files
for problems?  Stop!  Download the new AJAX search engine that makes
searching your log files as easy as surfing the  web.  DOWNLOAD SPLUNK!
http://sel.as-us.falkag.net/sel?cmd=k&kid3432&bid#0486&dat1642
_______________________________________________
Home: http://acegisecurity.org
Acegisecurity-developer mailing list
[email protected]
https://lists.sourceforge.net/lists/listinfo/acegisecurity-developer



-------------------------------------------------------
This SF.net email is sponsored by: Splunk Inc. Do you grep through log files
for problems?  Stop!  Download the new AJAX search engine that makes
searching your log files as easy as surfing the  web.  DOWNLOAD SPLUNK!
http://sel.as-us.falkag.net/sel?cmd=lnk&kid3432&bid#0486&dat1642
_______________________________________________
Home: http://acegisecurity.org
Acegisecurity-developer mailing list
[email protected]
https://lists.sourceforge.net/lists/listinfo/acegisecurity-developer

Reply via email to