Hi
Using the DatabaseServerLoginModule, I'm facing the following strange behaviour: The
login works fine, the user is authenticated against the values from the database, and
he is assigned to the correct role. But when the user tries to call an EJB method, the
DatabaseServerLoginModule receives a logout information immediately before this EJB
call:
2004-09-14 21:29:15,156 TRACE [org.jboss.security.auth.spi.DatabaseServerLoginModule]
initialize
2004-09-14 21:29:15,156 TRACE [org.jboss.security.auth.spi.DatabaseServerLoginModule]
Saw unauthenticatedIdentity=ExternalUser
2004-09-14 21:29:15,156 TRACE [org.jboss.security.auth.spi.DatabaseServerLoginModule]
DatabaseServerLoginModule, dsJndiName=java:/RRSDataSource
2004-09-14 21:29:15,156 TRACE [org.jboss.security.auth.spi.DatabaseServerLoginModule]
principalsQuery=select password from rrsUser where name=?
2004-09-14 21:29:15,156 TRACE [org.jboss.security.auth.spi.DatabaseServerLoginModule]
rolesQuery=select role, 'Roles' from rrsUser where name=?
2004-09-14 21:29:15,156 TRACE [org.jboss.security.auth.spi.DatabaseServerLoginModule]
login
2004-09-14 21:29:15,156 TRACE [org.jboss.security.auth.spi.DatabaseServerLoginModule]
User 'admin' authenticated, loginOk=true
2004-09-14 21:29:15,156 TRACE [org.jboss.security.auth.spi.DatabaseServerLoginModule]
commit, loginOk=true
2004-09-14 21:29:15,156 TRACE [org.jboss.security.auth.spi.DatabaseServerLoginModule]
Assign user to role Administrator
2004-09-14 21:29:15,156 TRACE
[org.jboss.security.plugins.JaasSecurityManager.rrs-security] updateCache,
subject=Betreff: Principal: admin
Principal: Roles(members:Administrator)
2004-09-14 21:29:15,156 TRACE [org.jboss.security.auth.spi.DatabaseServerLoginModule]
logout
2004-09-14 21:29:15,171 ERROR [org.jboss.ejb.plugins.SecurityInterceptor] Insufficient
method permissions, principal=admin, method=create, interface=HOME,
requiredRoles=[Administrator, InternalUser], principalRoles=null
Because of this logout, the user seems not to 'have' his role any more (in this case
Administrator, which would be one of the allowed role to call the EJB method).
My login-config looks like that:
<application-policy name = "rrs-security">
<login-module code = "org.jboss.security.auth.spi.DatabaseServerLoginModule"
flag = "required">
<module-option name = "dsJndiName">java:/RRSDataSource</module-option>
<module-option name = "principalsQuery">select password from rrsUser
where name=?</module-option>
<module-option name = "rolesQuery">select role, 'Roles' from rrsUser
where name=?</module-option>
<module-option name =
"unauthenticatedIdentity">ExternalUser</module-option>
</login-module>
<login-module code = "org.jboss.security.ClientLoginModule"
flag = "required">
</login-module>
</application-policy>
Does anybody encounter the same problem with this logout? I'm using JBoss 4.0 RC2.
View the original post :
http://www.jboss.org/index.html?module=bb&op=viewtopic&p=3848216#3848216
Reply to the post :
http://www.jboss.org/index.html?module=bb&op=posting&mode=reply&p=3848216
-------------------------------------------------------
This SF.Net email is sponsored by: thawte's Crypto Challenge Vl
Crack the code and win a Sony DCRHC40 MiniDV Digital Handycam
Camcorder. More prizes in the weekly Lunch Hour Challenge.
Sign up NOW http://ad.doubleclick.net/clk;10740251;10262165;m
_______________________________________________
JBoss-user mailing list
[EMAIL PROTECTED]
https://lists.sourceforge.net/lists/listinfo/jboss-user
