Hi,
I am using Jboss 3.2.3 + tomcat 4.1.29. I configured jboss for JAAS and modified my
application to work with JAAS.
When i access AddToCart, Jboss challenges for LOGIN, i fill in username password. It
throws the following error then.
It clearly shows that navis/navis is getting authenticated but something bad is
happening later. may be something to do with roles. Can somebidy show some direction
please???
TIA
Navjot Singh
Snippet from server.log - pls notice last few lines of this log.
=======================================
[org.jboss.security.auth.spi.DatabaseServerLoginModule] initialize
[org.jboss.security.auth.spi.DatabaseServerLoginModule] DatabaseServerLoginModule,
dsJndiName=java:/SmailDS
[org.jboss.security.auth.spi.DatabaseServerLoginModule] principalsQuery=select passwd
from CustomerLogin where custCode=?
[org.jboss.security.auth.spi.DatabaseServerLoginModule] rolesQuery=select role, role
from CustomerLogin where custCode=?
[org.jboss.security.auth.spi.DatabaseServerLoginModule] login
TRACE [org.jboss.resource.connectionmanager.TxConnectionManager] subject: null
TRACE [org.jboss.resource.connectionmanager.TxConnectionManager] getManagedConnection
returning unassociated connection
TRACE [org.jboss.resource.connectionmanager.JBossManagedConnectionPool] supplying
ManagedConnection from pool: [EMAIL PROTECTED]
TRACE [org.jboss.resource.connectionmanager.JBossManagedConnectionPool] Getting
connection from pool [InUse/Available/Max]: [1/1/20]
TRACE [org.jboss.resource.connectionmanager.CachedConnectionManager] registering
connection from [EMAIL PROTECTED], connection : [EMAIL PROTECTED], key: null
TRACE [org.jboss.resource.connectionmanager.TxConnectionManager] connectionClosed
called
TRACE [org.jboss.resource.connectionmanager.CachedConnectionManager] unregistering
connection from [EMAIL PROTECTED], object: [EMAIL PROTECTED], key: null
TRACE [org.jboss.resource.connectionmanager.TxConnectionManager] unregisterConnection:
0 handles left
TRACE [org.jboss.resource.connectionmanager.TxConnectionManager] delisting currenttx:
null, ManagedConnection: [EMAIL PROTECTED]
TRACE [org.jboss.resource.connectionmanager.JBossManagedConnectionPool] putting
ManagedConnection back into pool
TRACE [org.jboss.resource.connectionmanager.JBossManagedConnectionPool] Returning
connection to pool [InUse/Available/Max]: [0/1/20]
TRACE [org.jboss.security.auth.spi.DatabaseServerLoginModule] User 'navis'
authenticated, loginOk=true
TRACE [org.jboss.security.auth.spi.DatabaseServerLoginModule] commit, loginOk=true
TRACE [org.jboss.resource.connectionmanager.TxConnectionManager] subject: null
TRACE [org.jboss.resource.connectionmanager.TxConnectionManager] getManagedConnection
returning unassociated connection
[org.jboss.security.plugins.JaasSecurityManager.ShopexAuth] updateCache,
subject=Subject:
Principal: navis
Principal: USER(members:USER)
[org.jboss.web.tomcat.security.JBossSecurityMgrRealm] User: navis is authenticated
[org.jboss.web.tomcat.security.JBossSecurityMgrRealm] End authenticate, principal=navis
[org.jboss.web.localhost.Engine] Authenticator[/shopex]: Authentication of 'navis' was
successful
[org.jboss.web.localhost.Engine] Authenticator[/shopex]: Redirecting to original
'/shopex/AddToCart.do?PROD_CODE=BM'
[org.jboss.web.localhost.Engine] Authenticator[/shopex]: Failed authenticate() test
[org.jboss.web.localhost.Engine] StandardContext[/shopex]: Mapping
contextPath='/shopex' with requestURI='/shopex/AddToCart.do' and
relativeURI='/AddToCart.do'
web.xml
=====
<security-constraint>
<web-resource-collection>
<web-resource-name>USER Restricted</web-resource-name>
Declarative USER restriction
<url-pattern>/AddToCart.do</url-pattern>
<http-method>GET</http-method>
</web-resource-collection>
<web-resource-collection>
<auth-constraint>
<role-name>USER</role-name>
</auth-constraint>
<user-data-constraint>
no description
<transport-guarantee>NONE</transport-guarantee>
</user-data-constraint>
</security-constraint>
<login-config>
<auth-method>FORM</auth-method>
<realm-name>Default</realm-name>
<form-login-config>
<form-login-page>/jsp/signin.jsp</form-login-page>
<form-error-page>/jsp/badlogin.jsp</form-error-page>
</form-login-config>
</login-config>
<security-role>
A user allowed to buy items and place order
<role-name>USER</role-name>
</security-role>
jboss login-config.xml
==============
<application-policy name="ShopexAuth">
<login-module code="org.jboss.security.auth.spi.DatabaseServerLoginModule"
flag="required">
<module-option name="dsJndiName">java:/SmailDS</module-option>
<module-option name="principalsQuery">select passwd from CustomerLogin where
custCode=?</module-option>
<module-option name="rolesQuery">select role, role from CustomerLogin where
custCode=?</module-option>
</login-module>
</application-policy>
CustomerLogin
=========
custCode | passwd | role
-----------------------------
navis | navis | USER
View the original post :
http://www.jboss.org/index.html?module=bb&op=viewtopic&p=3840043#3840043
Reply to the post :
http://www.jboss.org/index.html?module=bb&op=posting&mode=reply&p=3840043
-------------------------------------------------------
This SF.Net email sponsored by Black Hat Briefings & Training.
Attend Black Hat Briefings & Training, Las Vegas July 24-29 -
digital self defense, top technical experts, no vendor pitches,
unmatched networking opportunities. Visit www.blackhat.com
_______________________________________________
JBoss-user mailing list
[EMAIL PROTECTED]
https://lists.sourceforge.net/lists/listinfo/jboss-user
