[JBoss-user] [Security & JAAS/JBoss] - servlet call EJB secured -> Authentication exception, princi

Thu, 01 Jul 2004 13:31:12 -0700 

Greetings,

I'm trying to invoke a secured EJB (methods permission) in my servet but even with the 
run-as in my web.xml to set the role authorized in my EJB, I got always the error 
below:

  | 2004-07-01 21:19:52,661 ERROR [org.jboss.web.localhost.Engine] 
StandardWrapperValve[ServiceServlet]: Servlet.service() for servlet ServiceServlet 
threw exception
  | javax.ejb.EJBException: checkSecurityAssociation; CausedByException is:
  |         Authentication exception, principal=null
  | 

My web.xml:

  | <web-app>
  |    <servlet>
  |       <servlet-name>ServiceServlet</servlet-name>
  |       <display-name>Service HTTP/XML Servlet</display-name>
  |       <description>UIF Interface HTTP/XML</description>
  |      <servlet-class>pt.ptinovacao.nginpro.uif.http.ServiceServlet</servlet-class>
  | 
  |       <load-on-startup>5</load-on-startup>
  |       <run-as>
  |          <role-name>engine-user</role-name>
  |       </run-as>
  |     ...
  |   <security-role>
  |       <description>permission to execute UIF engine</description>
  |       <role-name>engine-user</role-name>
  |    </security-role>
  | 
  |    </servlet>
  | </web-app>
  | 

My ejb-jar.xml of my EJB:

  | <ejb-jar >
  | ...
  |   <method-permission >
  |       <description>role granted</description>
  |          <role-name>engine-user</role-name>
  |       <method >
  |          <description>create method</description>
  |          <ejb-name>ServiceManager</ejb-name>
  |          <method-intf>LocalHome</method-intf>
  |          <method-name>create</method-name>
  |          <method-params>
  |          </method-params>
  |       </method>
  |    </method-permission>
  | </ejb-jar>
  | 

Any help would be very appreciated.

Regards,
Pedro Salazar.

View the original post : 
http://www.jboss.org/index.html?module=bb&op=viewtopic&p=3840676#3840676

Reply to the post : 
http://www.jboss.org/index.html?module=bb&op=posting&mode=reply&p=3840676


-------------------------------------------------------
This SF.Net email sponsored by Black Hat Briefings & Training.
Attend Black Hat Briefings & Training, Las Vegas July 24-29 - 
digital self defense, top technical experts, no vendor pitches, 
unmatched networking opportunities. Visit www.blackhat.com
_______________________________________________
JBoss-user mailing list
[EMAIL PROTECTED]
https://lists.sourceforge.net/lists/listinfo/jboss-user

Reply via email to