[jboss-user] [Security & JAAS/JBoss] - Got 403 Error with own LoginModule

userand Wed, 22 Nov 2006 07:41:29 -0800

Hi,

I need to implement a LoginModule for the JBoss Portal and I got stuck.
By now I use the plain jboss-portal-2.4.0.


The LoginModule is extending the UsernamePasswordLoginModule class and the 
methods are
called sucessfully.

I wrote some dummy methods to test if all goes well:


  |     protected String getUsersPassword() 
  |         throws LoginException {
  |         
  |         String userName;
  | 
  |         
  |         MyLoginModule.log.info( "getUsersPassword() aufgerufen" );
  |         
  |         userName = this.getUsername();
  |         MyLoginModule.log.info( 
  |                 "getUsersPassword(): Benutzername: " + userName );
  |         
  |         if( userName.equals( "andreas" ) == true )
  |         {
  |             return "pwd_andreas";
  |         }
  |         else
  |         {
  |             return "";
  |         }
  |     }
  | 
  |     protected boolean validatePassword( 
  |             String inputPassword, 
  |             String expected )
  |     {
  |         boolean result;
  |         
  |         
  |         MyLoginModule.log.info( 
  |                 "validatePassword(): [" +
  |                 inputPassword + 
  |                 "] [" +
  |                 expected +
  |                 "]" );
  |         
  |         result = super.validatePassword( inputPassword, expected );
  | 
  |         MyLoginModule.log.info( "validatePassword(): " + result );
  |         return result;
  |     }
  | 
  |     protected Group[] getRoleSets() 
  |         throws LoginException {
  | 
  |         SimpleGroup actGroup[];
  | 
  |         
  |         MyLoginModule.log.info( "getRoleSets(): aufgerufen" );
  |         actGroup = new SimpleGroup[1];
  |         
  |         
  |         actGroup[0] = new SimpleGroup( "Roles" );
  |         actGroup[0].addMember( 
  |                 new SimplePrincipal( "Admin" ) );
  | 
  |         MyLoginModule.log.info( "getRoleSets(): fertig." );
  |         return actGroup;
  |     }
  | 

When I authenticate, I will get an 403 error and the following output in the 
server logs:

anonymous wrote : 
  | LoginModule Class: de.abracon.jboss.AbraLoginModule
  | ControlFlag: Anmeldemodul-Steuerflag: required
  | Options:
  | 2006-11-22 16:09:40,218 INFO  [de.abracon.jboss.AbraLoginModule] 
LoginModule instanziiert.
  | 2006-11-22 16:09:40,218 INFO  [de.abracon.jboss.AbraLoginModule] 
getUsersPassword() aufgerufen
  | 2006-11-22 16:09:40,218 INFO  [de.abracon.jboss.AbraLoginModule] 
getUsersPassword(): Benutzername: andreas
  | 2006-11-22 16:09:40,218 INFO  [de.abracon.jboss.AbraLoginModule] 
validatePassword(): [pwd_andreas] [pwd_andreas]
  | 2006-11-22 16:09:40,218 INFO  [de.abracon.jboss.AbraLoginModule] 
validatePassword(): true
  | 2006-11-22 16:09:40,218 INFO  [de.abracon.jboss.AbraLoginModule] 
getRoleSets(): aufgerufen
  | 2006-11-22 16:09:40,218 INFO  [de.abracon.jboss.AbraLoginModule] 
getRoleSets(): fertig.
  | 2006-11-22 16:09:40,234 TRACE 
[org.jboss.security.plugins.JaasSecurityManager.portal] defaultLogin, [EMAIL 
PROTECTED], subject=Subject(17484699)[EMAIL PROTECTED](andreas)[EMAIL 
PROTECTED](Roles(members:Admin))
  | 2006-11-22 16:09:40,234 TRACE 
[org.jboss.security.plugins.JaasSecurityManager.portal] updateCache, 
inputSubject=Subject(17484699)[EMAIL PROTECTED](andreas)[EMAIL 
PROTECTED](Roles(members:Admin)), cacheSubject=Subject(870036)[EMAIL 
PROTECTED](andreas)[EMAIL PROTECTED](Roles(members:Admin))
  | 2006-11-22 16:09:40,234 TRACE 
[org.jboss.security.plugins.JaasSecurityManager.portal] Inserted cache info: 
[EMAIL PROTECTED](870036)[EMAIL PROTECTED](andreas)[EMAIL 
PROTECTED](Roles(members:Admin)),[EMAIL PROTECTED],expirationTime=1164209980203]
  | 2006-11-22 16:09:40,234 TRACE 
[org.jboss.security.plugins.JaasSecurityManager.portal] End isValid, true
  | 2006-11-22 16:09:40,234 TRACE [org.jboss.security.SecurityAssociation] 
pushSubjectContext, subject=Betreff:
  |     Principal: andreas
  |     Principal: Roles(members:Admin)
  | , [EMAIL PROTECTED],subject=8366806}
  | 2006-11-22 16:09:40,234 TRACE 
[org.jboss.security.plugins.JaasSecurityManager.portal] getPrincipal, cache 
info: [EMAIL PROTECTED](870036)[EMAIL PROTECTED](andreas)[EMAIL 
PROTECTED](Roles(members:Admin)),[EMAIL PROTECTED],expirationTime=1164209980203]
  | 2006-11-22 16:09:40,234 TRACE [org.jboss.security.SecurityAssociation] 
getSubject, [EMAIL PROTECTED],subject=8366806}
  | 2006-11-22 16:09:40,234 TRACE 
[org.jboss.security.plugins.JaasSecurityManager.portal] getUserRoles, subject: 
Betreff:
  |     Principal: andreas
  |     Principal: Roles(members:Admin)
  | 
  | 2006-11-22 16:09:40,234 TRACE [org.jboss.security.SecurityAssociation] 
clear, server=true
  | 2006-11-22 16:09:40,250 TRACE [org.jboss.security.SecurityAssociation] 
clear, server=true
  | 2006-11-22 16:16:31,453 DEBUG 
[org.jboss.resource.connectionmanager.IdleRemover] run: IdleRemover notifying 
pools, interval: 450000
  | 

Any idea what went wrong ...


View the original post : 
http://www.jboss.com/index.html?module=bb&op=viewtopic&p=3987918#3987918

Reply to the post : 
http://www.jboss.com/index.html?module=bb&op=posting&mode=reply&p=3987918
_______________________________________________
jboss-user mailing list
[email protected]
https://lists.jboss.org/mailman/listinfo/jboss-user

[jboss-user] [Security & JAAS/JBoss] - Got 403 Error with own LoginModule

Reply via email to