[Andromda-devel] AndroMDA/JIRA Created: (SPRING-119) Missing AuthenticationManager in serviceSecurityInterceptor bean

Tue, 20 Sep 2005 14:05:34 -0700 

Missing AuthenticationManager in serviceSecurityInterceptor bean
----------------------------------------------------------------

         Key: SPRING-119
         URL: http://jira.andromda.org/browse/SPRING-119
     Project: Spring Cartridge
        Type: Bug
    Versions: 3.0RC1    
 Environment: WinXP, maven-1.0.2, andromda-3.1-RC1
    Reporter: Diego Bendlin
 Assigned to: Chad Brandon 


An authentication manager needs to be specified in the 
serviceSecurityInterceptor bean definition.

The absence of this property leads to a runtime exception when deploying the 
web application.

This is how the serviceSecurityInterceptor bean is been generated:
<bean id="serviceSecurityInterceptor" 
class="net.sf.acegisecurity.intercept.method.aopalliance.MethodSecurityInterceptor">
        <property name="accessDecisionManager"><ref 
bean="serviceAccessDecisionManager"/></property>
        <property name="objectDefinitionSource">
            <value>
                jupen.calcu.dpnc.DpncSB.cargarIPC=ROLE_Admin
                jupen.calcu.dpnc.DpncSB.cargarSalario=ROLE_Admin
                jupen.calcu.bpm.JbpmSB.createJbpmSchema=ROLE_Admin
                jupen.calcu.bpm.JbpmSB.dropJbpmSchema=ROLE_Admin
                jupen.calcu.bpm.JbpmSB.cleanJbpmSchema=ROLE_Admin
            </value>
        </property>
    </bean>

And this is how it should be generated:
    <bean id="serviceSecurityInterceptor" 
class="net.sf.acegisecurity.intercept.method.aopalliance.MethodSecurityInterceptor">
        <property name="accessDecisionManager"><ref 
bean="serviceAccessDecisionManager"/></property>
<property name="authenticationManager"><ref 
bean="authenticationManager"/></property>
        <property name="objectDefinitionSource">
            <value>
                jupen.calcu.dpnc.DpncSB.cargarIPC=ROLE_Admin
                jupen.calcu.dpnc.DpncSB.cargarSalario=ROLE_Admin
                jupen.calcu.bpm.JbpmSB.createJbpmSchema=ROLE_Admin
                jupen.calcu.bpm.JbpmSB.dropJbpmSchema=ROLE_Admin
                jupen.calcu.bpm.JbpmSB.cleanJbpmSchema=ROLE_Admin
            </value>
        </property>
    </bean>
WARNING!!! Whean including this reference to bean authenticationManager it is 
assumed that a complementary applicationContext file exist that declares the 
authenticationManager bean.

This could be done in an applicationContext-security file, this is a custom 
file that the user need to put in his project and that file must be packaged 
with the web application.

If the user doesn't provide this additional bean definition the application 
will fail on deployment.




-------------------------------------------------------
SF.Net email is sponsored by:
Tame your development challenges with Apache's Geronimo App Server. 
Download it for free - -and be entered to win a 42" plasma tv or your very
own Sony(tm)PSP.  Click here to play: http://sourceforge.net/geronimo.php

Reply via email to