Hi Sternagel Annegret,
Thanks
for the tip. I made the change in LoginContext
as
LoginContext lc = new LoginContext("other", new
CallHandler(userName, pass));
lc.login();
and also i deleted the print security domain in the auth.conf of client.
But still my problem exists:
2002-06-04 15:31:02,572 ERROR
- Insufficient method permissions, principal=null,
method=create, requiredRoles=[administrator],
princip
alRoles=[]
java.rmi.RemoteException: checkSecurityAssociation;
nested exception is:
java.lang.SecurityException: Insufficient method permissions, principal=null,
method=create, requiredRoles=[administrator],
pr
incipalRoles=[]
java.lang.SecurityException: Insufficient method
permissions, principal=null, method=create, requiredRoles=[administrator],
principalR
oles=[]
at
org.jboss.ejb.plugins.SecurityInterceptor.checkSecurityAssociation(SecurityInterceptor.java:215)
at
org.jboss.ejb.plugins.SecurityInterceptor.invokeHome(SecurityInterceptor.java:91)
at
org.jboss.ejb.plugins.LogInterceptor.invokeHome(LogInterceptor.java:103)
at
org.jboss.ejb.StatelessSessionContainer.invokeHome(StatelessSessionContainer.java:268)
at
org.jboss.ejb.plugins.jrmp.server.JRMPContainerInvoker.invokeHome(JRMPContainerInvoker.java:456)
at
org.jboss.ejb.plugins.jrmp.interfaces.HomeProxy.invokeHome(HomeProxy.java:237)
at
org.jboss.ejb.plugins.jrmp.interfaces.HomeProxy.invoke(HomeProxy.java:182)
at $Proxy127.create(Unknown
Source)
at
com.zeborg.print.web.OrgMgrWB.getRemoteRef(OrgMgrWB.java:107)
at
com.zeborg.print.web.OrgMgrWB.getUserOrg(OrgMgrWB.java:241)
at
jsp.zeborg.sso._0002fjsp_0002fzeborg_0002fsso_0002flogin_0002dprint_0002ejsplogin_0002dprint_jsp_10._jspService(_0002fjsp_0
002fzeborg_0002fsso_0002flogin_0002dprint_0002ejsplogin_0002dprint_jsp_10.java:255)
at
org.apache.jasper.runtime.HttpJspBase.service(HttpJspBase.java:119)
at
javax.servlet.http.HttpServlet.service(HttpServlet.java:853)
at
org.apache.jasper.servlet.JspServlet$JspCountedServlet.service(JspServlet.java:130)
at
javax.servlet.http.HttpServlet.service(HttpServlet.java:853)
at
org.apache.jasper.servlet.JspServlet$JspServletWrapper.service(JspServlet.java:282)
at
org.apache.jasper.servlet.JspServlet.serviceJspFile(JspServlet.java:429)
at
org.apache.jasper.servlet.JspServlet.service(JspServlet.java:500)
at
javax.servlet.http.HttpServlet.service(HttpServlet.java:853)
at
org.apache.tomcat.core.ServletWrapper.doService(ServletWrapper.java:405)
at
org.apache.tomcat.core.Handler.service(Handler.java:287)
at
org.apache.tomcat.core.ServletWrapper.service(ServletWrapper.java:372)
at
org.apache.tomcat.core.ContextManager.internalService(ContextManager.java:812)
at
org.apache.tomcat.core.ContextManager.service(ContextManager.java:758)
at
org.apache.tomcat.service.http.HttpConnectionHandler.processConnection(HttpConnectionHandler.java:213)
at
org.apache.tomcat.service.TcpWorkerThread.runIt(PoolTcpEndpoint.java:416)
at
org.apache.tomcat.util.ThreadPool$ControlRunnable.run(ThreadPool.java:501)
at
java.lang.Thread.run(Thread.java:484)
com.zeborg.print.util.ZPrintException:
java.rmi.RemoteException: checkSecurityAssociation; nested exception
is:
java.lang.SecurityException:
Insufficient method permissions, principal=null, method=create,
requiredRoles=[administrator],
pr
incipalRoles=[]
at
com.zeborg.print.web.OrgMgrWB.getRemoteRef(OrgMgrWB.java:117)
at
com.zeborg.print.web.OrgMgrWB.getUserOrg(OrgMgrWB.java:241)
at
jsp.zeborg.sso._0002fjsp_0002fzeborg_0002fsso_0002flogin_0002dprint_0002ejsplogin_0002dprint_jsp_10._jspService(_0002fjsp_0
002fzeborg_0002fsso_0002flogin_0002dprint_0002ejsplogin_0002dprint_jsp_10.java:255)
at
org.apache.jasper.runtime.HttpJspBase.service(HttpJspBase.java:119)
at
javax.servlet.http.HttpServlet.service(HttpServlet.java:853)
at
org.apache.jasper.servlet.JspServlet$JspCountedServlet.service(JspServlet.java:130)
at
javax.servlet.http.HttpServlet.service(HttpServlet.java:853)
at
org.apache.jasper.servlet.JspServlet$JspServletWrapper.service(JspServlet.java:282)
at
org.apache.jasper.servlet.JspServlet.serviceJspFile(JspServlet.java:429)
at
org.apache.jasper.servlet.JspServlet.service(JspServlet.java:500)
at
javax.servlet.http.HttpServlet.service(HttpServlet.java:853)
at
org.apache.tomcat.core.ServletWrapper.doService(ServletWrapper.java:405)
at
org.apache.tomcat.core.Handler.service(Handler.java:287)
at
org.apache.tomcat.core.ServletWrapper.service(ServletWrapper.java:372)
at
org.apache.tomcat.core.ContextManager.internalService(ContextManager.java:812)
at
org.apache.tomcat.core.ContextManager.service(ContextManager.java:758)
at
org.apache.tomcat.service.http.HttpConnectionHandler.processConnection(HttpConnectionHandler.java:213)
at
org.apache.tomcat.service.TcpWorkerThread.runIt(PoolTcpEndpoint.java:416)
at
org.apache.tomcat.util.ThreadPool$ControlRunnable.run(ThreadPool.java:501)
at
java.lang.Thread.run(Thread.java:484)
com.zeborg.print.util.ZPrintException:
com.zeborg.print.util.ZPrintException: java.rmi.RemoteException:
checkSecurityAssociation; nest
ed exception
is:
java.lang.SecurityException:
Insufficient method permissions, principal=null, method=create,
requiredRoles=[administrator],
pr
incipalRoles=[]
at
com.zeborg.print.web.OrgMgrWB.getUserOrg(OrgMgrWB.java:267)
at
jsp.zeborg.sso._0002fjsp_0002fzeborg_0002fsso_0002flogin_0002dprint_0002ejsplogin_0002dprint_jsp_10._jspService(_0002fjsp_0
002fzeborg_0002fsso_0002flogin_0002dprint_0002ejsplogin_0002dprint_jsp_10.java:255)
at
org.apache.jasper.runtime.HttpJspBase.service(HttpJspBase.java:119)
at
javax.servlet.http.HttpServlet.service(HttpServlet.java:853)
at
org.apache.jasper.servlet.JspServlet$JspCountedServlet.service(JspServlet.java:130)
at
javax.servlet.http.HttpServlet.service(HttpServlet.java:853)
at
org.apache.jasper.servlet.JspServlet$JspServletWrapper.service(JspServlet.java:282)
at
org.apache.jasper.servlet.JspServlet.serviceJspFile(JspServlet.java:429)
at
org.apache.jasper.servlet.JspServlet.service(JspServlet.java:500)
at
javax.servlet.http.HttpServlet.service(HttpServlet.java:853)
at
org.apache.tomcat.core.ServletWrapper.doService(ServletWrapper.java:405)
at
org.apache.tomcat.core.Handler.service(Handler.java:287)
at
org.apache.tomcat.core.ServletWrapper.service(ServletWrapper.java:372)
at
org.apache.tomcat.core.ContextManager.internalService(ContextManager.java:812)
at
org.apache.tomcat.core.ContextManager.service(ContextManager.java:758)
at
org.apache.tomcat.service.http.HttpConnectionHandler.processConnection(HttpConnectionHandler.java:213)
at
org.apache.tomcat.service.TcpWorkerThread.runIt(PoolTcpEndpoint.java:416)
at
org.apache.tomcat.util.ThreadPool$ControlRunnable.run(ThreadPool.java:501)
at java.lang.Thread.run(Thread.java:484)
My ejb-jar.xml has the security
related entries like below
<assembly-descriptor>
<security-role>
<role-name>administrator</role-name>
</security-role>
<method-permission>
<role-name>administrator</role-name>
<method>
<ejb-name>OrgMgr</ejb-name>
<method-name>*</method-name>
</method>
</method-permission>
</assembly-descriptor>
and my roles.properties has the mapping
appuser=administrator
Is there anything where i went wrong?
Warm Regards,
Deepa Annamalai
Virtusa (Pvt)
Ltd.,
3rd Floor, My Home Tycoon,
Begumpet,
Hyderabad, AP
India - 500
016.
+91-40-3414200 ext
135/136
[EMAIL PROTECTED]
From: Sternagel Annegret (SYS/PE)
[mailto:[EMAIL PROTECTED]]
Sent: Tuesday, June 04, 2002 1:07 PM
To: '[EMAIL PROTECTED]'; 'Deepa Annamalai'
Subject: RE: [JBoss-user] URGENT-- pls help, FailedLoginException in
User sRolesLoginModule in JBoss
In auth.conf for the client You must use a ClientLoginModule:
So either call
LoginContext lc = new LoginContext("other", new CallHandler());
to use the default configuration
or change the entry in the
C:\JBoss-2.4.4_Tomcat-3.2.3\jboss\client\auth.conf file to:
print {
org.jboss.security.ClientLoginModule required;
};
Annegret
-----Original Message-----
From: Deepa Annamalai [mailto:[EMAIL PROTECTED]]
Sent: Montag, 3. Juni 2002 16:57
To: [EMAIL PROTECTED]
Cc: [EMAIL PROTECTED]; Mahesh Agarwal
Subject: [JBoss-user] URGENT-- pls help, FailedLoginException in
UsersRolesLoginModule in JBoss
Hello All,
I am trying to implement UsersRolesLoginModule for my EJBs and i have done
the following to my application.
1. In the jboss.xml file of my EJB i have added a tag,
<security-domain>java:/jaas/print</security-domain>
2. In the C:\JBoss-2.4.4_Tomcat-3.2.3\jboss\conf\tomcat\auth.conf file i
have included the following entry:
print {
org.jboss.security.auth.spi.UsersRolesLoginModule required
;
};
3. In the C:\JBoss-2.4.4_Tomcat-3.2.3\jboss\client\auth.conf file i have
included the following entry:
print {
org.jboss.security.auth.spi.UsersRolesLoginModule required
;
};
4. In the C:\JBoss-2.4.4_Tomcat-3.2.3\jboss\conf\tomcat\jboss.jcml file, i
have uncommented the entry:
<mbean code="org.jboss.security.plugins.JaasSecurityManagerService"
name="Security:name=JaasSecurityManager">
<attribute
name="SecurityManagerClassName">org.jboss.security.plugins.JaasSecurityManag
er</attribute>
</mbean>
5. I have added 2 properties file, users.properties and roles.properties and
included them in the jar file i am deploying.
The users.properties file has the username and the password in oneline
like below:
appuser=4colorprint
The roles.properties file has the username and the role in oneline like
below:
appuser=administrator
6. I have implemented the CallHandler as below:
public class CallHandler implements CallbackHandler
{
String userName = PropertyReader.getValue ("WEBLOGIC_APPUSER");
String pass = PropertyReader.getValue ("WEBLOGIC_APPUSER_PASSWORD");
PasswordCallback passwd = null;
TextInputCallback text = null;
public void handle(Callback[] callback)
{
System.out.println("USERNAME is " + userName + "...");
System.out.println("PASSWORD is " + pass + "....");
try
{
for(int i=0; i<callback.length; i++)
{
if(callback[i] instanceof TextInputCallback)
{
text = (TextInputCallback)
callback[i];
text.setText(userName);
}
if(callback[i] instanceof PasswordCallback)
{
passwd = (PasswordCallback)
callback[i];
passwd.setPassword(pass.toCharArray());
}
}
}catch(Exception e)
{
e.printStackTrace();
System.out.println("Authentication failed
........");
}
}
/*public void setUserDetails(String userName, String pass)
{
this.userName = userName;
this.pass = pass;
}*/
}
7. Now, when i get LoginContext and call the login() method, i am getting
FailedLoginException
The piece of code that gives exception is:
try
{
LoginContext lc = new LoginContext("print", new
CallHandler());
lc.login();
try
{
Properties props = new Properties();
props.put(Context.INITIAL_CONTEXT_FACTORY,
initialContextFactory);
if (urlString != null)
{
if (isDebugOn())
{
Log.debug("getInitialContext: urlString=" + urlString);
}
props.put(Context.PROVIDER_URL, urlString);
return new
InitialContext(props);
}
}
catch (NamingException e)
{
e.printStackTrace();
throw (NamingException)e.fillInStackTrace();
}
}
catch(LoginException e)
{
e.printStackTrace();
}
please see the server console output below for reference.
can anyone tell me where i went wrong ?
Warm Regards,
Deepa Annamalai
Virtusa (Pvt) Ltd.,
3rd Floor, My Home Tycoon,
Begumpet,
Hyderabad, AP
India - 500 016.
+91-40-3414200 ext 135/136
[EMAIL PROTECTED]
USERNAME is appuser
PASSWORD is 4colorprint
2002-06-03 18:10:33,092 DEBUG - Bad password for username=null
javax.security.auth.login.FailedLoginException: Password Incorrect/Password
Required
at
org.jboss.security.auth.spi.UsernamePasswordLoginModule.login(UsernamePasswo
rdLoginModule.java:149)
at
org.jboss.security.auth.spi.UsersRolesLoginModule.login(UsersRolesLoginModul
e.java:109)
at java.lang.reflect.Method.invoke(Native Method)
at
javax.security.auth.login.LoginContext.invoke(LoginContext.java:595)
at
javax.security.auth.login.LoginContext.access$000(LoginContext.java:125)
at
javax.security.auth.login.LoginContext$3.run(LoginContext.java:531)
at java.security.AccessController.doPrivileged(Native Method)
at
javax.security.auth.login.LoginContext.invokeModule(LoginContext.java:528)
at
javax.security.auth.login.LoginContext.login(LoginContext.java:449)
at
com.zeborg.util.ContextCreation.getInitialContext(ContextCreation.java:131)
at
com.zeborg.util.ContextCreation.getInitialContext(ContextCreation.java:112)
at com.zeborg.util.ContextCreation.lookUp(ContextCreation.java:61)
at com.zeborg.print.web.Manager.lookUp(Manager.java:69)
at com.zeborg.print.web.OrgMgrWB.getRemoteRef(OrgMgrWB.java:103)
at com.zeborg.print.web.OrgMgrWB.getUserOrg(OrgMgrWB.java:241)
at
jsp.zeborg.sso._0002fjsp_0002fzeborg_0002fsso_0002flogin_0002dprint_0002ejsp
login_0002dprint_jsp_0._jspService(_0002fjsp_00
02fzeborg_0002fsso_0002flogin_0002dprint_0002ejsplogin_0002dprint_jsp_0.java
:255)
at
org.apache.jasper.runtime.HttpJspBase.service(HttpJspBase.java:119)
at javax.servlet.http.HttpServlet.service(HttpServlet.java:853)
at
org.apache.jasper.servlet.JspServlet$JspCountedServlet.service(JspServlet.ja
va:130)
at javax.servlet.http.HttpServlet.service(HttpServlet.java:853)
at
org.apache.jasper.servlet.JspServlet$JspServletWrapper.service(JspServlet.ja
va:282)
at
org.apache.jasper.servlet.JspServlet.serviceJspFile(JspServlet.java:429)
at org.apache.jasper.servlet.JspServlet.service(JspServlet.java:500)
at javax.servlet.http.HttpServlet.service(HttpServlet.java:853)
at
org.apache.tomcat.core.ServletWrapper.doService(ServletWrapper.java:405)
at org.apache.tomcat.core.Handler.service(Handler.java:287)
at
org.apache.tomcat.core.ServletWrapper.service(ServletWrapper.java:372)
at
org.apache.tomcat.core.ContextManager.internalService(ContextManager.java:81
2)
at
org.apache.tomcat.core.ContextManager.service(ContextManager.java:758)
at
org.apache.tomcat.service.http.HttpConnectionHandler.processConnection(HttpC
onnectionHandler.java:213)
at
org.apache.tomcat.service.TcpWorkerThread.runIt(PoolTcpEndpoint.java:416)
at
org.apache.tomcat.util.ThreadPool$ControlRunnable.run(ThreadPool.java:501)
at java.lang.Thread.run(Thread.java:484)
java.lang.NullPointerException
at com.zeborg.util.ContextCreation.lookUp(ContextCreation.java:62)
at com.zeborg.print.web.Manager.lookUp(Manager.java:69)
at com.zeborg.print.web.OrgMgrWB.getRemoteRef(OrgMgrWB.java:103)
at com.zeborg.print.web.OrgMgrWB.getUserOrg(OrgMgrWB.java:241)
at
jsp.zeborg.sso._0002fjsp_0002fzeborg_0002fsso_0002flogin_0002dprint_0002ejsp
login_0002dprint_jsp_0._jspService(_0002fjsp_00
02fzeborg_0002fsso_0002flogin_0002dprint_0002ejsplogin_0002dprint_jsp_0.java
:255)
at
org.apache.jasper.runtime.HttpJspBase.service(HttpJspBase.java:119)
at javax.servlet.http.HttpServlet.service(HttpServlet.java:853)
at
org.apache.jasper.servlet.JspServlet$JspCountedServlet.service(JspServlet.ja
va:130)
at javax.servlet.http.HttpServlet.service(HttpServlet.java:853)
at
org.apache.jasper.servlet.JspServlet$JspServletWrapper.service(JspServlet.ja
va:282)
at
org.apache.jasper.servlet.JspServlet.serviceJspFile(JspServlet.java:429)
at org.apache.jasper.servlet.JspServlet.service(JspServlet.java:500)
at javax.servlet.http.HttpServlet.service(HttpServlet.java:853)
at
org.apache.tomcat.core.ServletWrapper.doService(ServletWrapper.java:405)
at org.apache.tomcat.core.Handler.service(Handler.java:287)
at
org.apache.tomcat.core.ServletWrapper.service(ServletWrapper.java:372)
at
org.apache.tomcat.core.ContextManager.internalService(ContextManager.java:81
2)
at
org.apache.tomcat.core.ContextManager.service(ContextManager.java:758)
at
org.apache.tomcat.service.http.HttpConnectionHandler.processConnection(HttpC
onnectionHandler.java:213)
at
org.apache.tomcat.service.TcpWorkerThread.runIt(PoolTcpEndpoint.java:416)
at
org.apache.tomcat.util.ThreadPool$ControlRunnable.run(ThreadPool.java:501)
at java.lang.Thread.run(Thread.java:484)
com.zeborg.print.util.ZPrintException: java.lang.NullPointerException
at com.zeborg.print.web.OrgMgrWB.getRemoteRef(OrgMgrWB.java:117)
at com.zeborg.print.web.OrgMgrWB.getUserOrg(OrgMgrWB.java:241)
at
jsp.zeborg.sso._0002fjsp_0002fzeborg_0002fsso_0002flogin_0002dprint_0002ejsp
login_0002dprint_jsp_0._jspService(_0002fjsp_00
02fzeborg_0002fsso_0002flogin_0002dprint_0002ejsplogin_0002dprint_jsp_0.java
:255)
at
org.apache.jasper.runtime.HttpJspBase.service(HttpJspBase.java:119)
at javax.servlet.http.HttpServlet.service(HttpServlet.java:853)
at
org.apache.jasper.servlet.JspServlet$JspCountedServlet.service(JspServlet.ja
va:130)
at javax.servlet.http.HttpServlet.service(HttpServlet.java:853)
at
org.apache.jasper.servlet.JspServlet$JspServletWrapper.service(JspServlet.ja
va:282)
at
org.apache.jasper.servlet.JspServlet.serviceJspFile(JspServlet.java:429)
at org.apache.jasper.servlet.JspServlet.service(JspServlet.java:500)
at javax.servlet.http.HttpServlet.service(HttpServlet.java:853)
at
org.apache.tomcat.core.ServletWrapper.doService(ServletWrapper.java:405)
at org.apache.tomcat.core.Handler.service(Handler.java:287)
at
org.apache.tomcat.core.ServletWrapper.service(ServletWrapper.java:372)
at
org.apache.tomcat.core.ContextManager.internalService(ContextManager.java:81
2)
at
org.apache.tomcat.core.ContextManager.service(ContextManager.java:758)
at
org.apache.tomcat.service.http.HttpConnectionHandler.processConnection(HttpC
onnectionHandler.java:213)
at
org.apache.tomcat.service.TcpWorkerThread.runIt(PoolTcpEndpoint.java:416)
at
org.apache.tomcat.util.ThreadPool$ControlRunnable.run(ThreadPool.java:501)
at java.lang.Thread.run(Thread.java:484)
com.zeborg.print.util.ZPrintException:
com.zeborg.print.util.ZPrintException: java.lang.NullPointerException
at com.zeborg.print.web.OrgMgrWB.getUserOrg(OrgMgrWB.java:267)
at
jsp.zeborg.sso._0002fjsp_0002fzeborg_0002fsso_0002flogin_0002dprint_0002ejsp
login_0002dprint_jsp_0._jspService(_0002fjsp_00
02fzeborg_0002fsso_0002flogin_0002dprint_0002ejsplogin_0002dprint_jsp_0.java
:255)
at
org.apache.jasper.runtime.HttpJspBase.service(HttpJspBase.java:119)
at javax.servlet.http.HttpServlet.service(HttpServlet.java:853)
at
org.apache.jasper.servlet.JspServlet$JspCountedServlet.service(JspServlet.ja
va:130)
at javax.servlet.http.HttpServlet.service(HttpServlet.java:853)
at
org.apache.jasper.servlet.JspServlet$JspServletWrapper.service(JspServlet.ja
va:282)
at
org.apache.jasper.servlet.JspServlet.serviceJspFile(JspServlet.java:429)
at org.apache.jasper.servlet.JspServlet.service(JspServlet.java:500)
at javax.servlet.http.HttpServlet.service(HttpServlet.java:853)
at
org.apache.tomcat.core.ServletWrapper.doService(ServletWrapper.java:405)
at org.apache.tomcat.core.Handler.service(Handler.java:287)
at
org.apache.tomcat.core.ServletWrapper.service(ServletWrapper.java:372)
at
org.apache.tomcat.core.ContextManager.internalService(ContextManager.java:81
2)
at
org.apache.tomcat.core.ContextManager.service(ContextManager.java:758)
at
org.apache.tomcat.service.http.HttpConnectionHandler.processConnection(HttpC
onnectionHandler.java:213)
at
org.apache.tomcat.service.TcpWorkerThread.runIt(PoolTcpEndpoint.java:416)
at
org.apache.tomcat.util.ThreadPool$ControlRunnable.run(ThreadPool.java:501)
at java.lang.Thread.run(Thread.java:484)
_______________________________________________________________
Don't miss the 2002 Sprint PCS Application Developer's Conference
August 25-28 in Las Vegas -- http://devcon.sprintpcs.com/adp/index.cfm
_______________________________________________
JBoss-user mailing list
[EMAIL PROTECTED]
https://lists.sourceforge.net/lists/listinfo/jboss-user
