Hi, This is turning into a real interesting discussion. I too suffer from the principalRoles=null problem, but please allow me to explain situation.
I am running JBoss 3.2.4 LoginModule: client: ClientLoginModule, multithreaded=true server: UsersRolesLoginModule I have enabled TRACE level log, please see below. | 2004-11-10 18:13:58,850 TRACE [org.jboss.security.auth.spi.UsersRolesLoginModule] initialize | 2004-11-10 18:13:58,850 TRACE [org.jboss.security.auth.spi.UsersRolesLoginModule] Passworg hashing activated: algorithm = SHA, encoding = base64 | 2004-11-10 18:13:58,850 TRACE [org.jboss.security.auth.spi.UsersRolesLoginModule] findResource: null | 2004-11-10 18:13:58,850 TRACE [org.jboss.security.auth.spi.UsersRolesLoginModule] Properties file=file:/home/demo/arnold/Kensington/jboss/server/default-01/conf/users.properties | 2004-11-10 18:13:58,850 TRACE [org.jboss.security.auth.spi.UsersRolesLoginModule] findResource: null | 2004-11-10 18:13:58,850 TRACE [org.jboss.security.auth.spi.UsersRolesLoginModule] Properties file=file:/home/demo/arnold/Kensington/jboss/server/default-01/conf/roles.properties | 2004-11-10 18:13:58,850 TRACE [org.jboss.security.auth.spi.UsersRolesLoginModule] login | 2004-11-10 18:13:58,850 TRACE [org.jboss.security.auth.spi.UsersRolesLoginModule] User 'demo' authenticated, loginOk=true | 2004-11-10 18:13:58,850 TRACE [org.jboss.security.auth.spi.UsersRolesLoginModule] commit, loginOk=true | 2004-11-10 18:13:58,850 TRACE [org.jboss.security.plugins.JaasSecurityManager.inforsense] updateCache, subject=Subject: | Principal: demo | Principal: Roles(members:is-user,mygroup,demoGroup) | | 2004-11-10 18:13:58,850 TRACE [org.jboss.security.auth.spi.UsersRolesLoginModule] logout | 2004-11-10 18:13:58,850 TRACE [org.jboss.security.auth.login.XMLLoginConfigImpl] getAppConfigurationEntry(inforsense), authInfo=AppConfigurationEntry[]: | [0] | LoginModule Class: org.jboss.security.auth.spi.UsersRolesLoginModule | ControlFlag: LoginModuleControlFlag: required | Options:name=hashEncoding, value=base64 | name=hashAlgorithm, value=SHA | | 2004-11-10 18:13:58,850 ERROR [org.jboss.ejb.plugins.SecurityInterceptor] Insufficient method permissions, principal=demo, method=executeNonBlocking, interface=REMOTE, requiredRoles=[<ANYBODY>], principalRoles=null | 2004-11-10 18:13:58,850 TRACE [org.jboss.security.auth.spi.UsersRolesLoginModule] initialize | 2004-11-10 18:13:58,850 TRACE [org.jboss.security.auth.spi.UsersRolesLoginModule] Passworg hashing activated: algorithm = SHA, encoding = base64 | 2004-11-10 18:13:58,850 TRACE [org.jboss.security.auth.spi.UsersRolesLoginModule] findResource: null | 2004-11-10 18:13:58,850 TRACE [org.jboss.security.auth.spi.UsersRolesLoginModule] Properties file=file:/home/demo/arnold/Kensington/jboss/server/default-01/conf/users.properties | 2004-11-10 18:13:58,850 TRACE [org.jboss.security.auth.spi.UsersRolesLoginModule] findResource: null | 2004-11-10 18:13:58,850 TRACE [org.jboss.security.auth.spi.UsersRolesLoginModule] Properties file=file:/home/demo/arnold/Kensington/jboss/server/default-01/conf/roles.properties | 2004-11-10 18:13:58,850 TRACE [org.jboss.security.auth.spi.UsersRolesLoginModule] login | 2004-11-10 18:13:58,850 TRACE [org.jboss.security.auth.spi.UsersRolesLoginModule] User 'demo' authenticated, loginOk=true | 2004-11-10 18:13:58,850 TRACE [org.jboss.security.auth.spi.UsersRolesLoginModule] commit, loginOk=true | 2004-11-10 18:13:58,850 TRACE [org.jboss.security.plugins.JaasSecurityManager.inforsense] updateCache, subject=Subject: | Principal: demo | Principal: Roles(members:is-user,mygroup,demoGroup) | | 2004-11-10 18:13:58,850 TRACE [org.jboss.security.auth.spi.UsersRolesLoginModule] logout | 2004-11-10 18:13:58,850 TRACE [org.jboss.security.auth.login.XMLLoginConfigImpl] getAppConfigurationEntry(inforsense), authInfo=AppConfigurationEntry[]: | [0] | LoginModule Class: org.jboss.security.auth.spi.UsersRolesLoginModule | ControlFlag: LoginModuleControlFlag: required | Options:name=hashEncoding, value=base64 | name=hashAlgorithm, value=SHA | | 2004-11-10 18:13:58,850 TRACE [org.jboss.security.auth.spi.UsersRolesLoginModule] initialize | 2004-11-10 18:13:58,850 TRACE [org.jboss.security.auth.spi.UsersRolesLoginModule] Passworg hashing activated: algorithm = SHA, encoding = base64 | 2004-11-10 18:13:58,850 TRACE [org.jboss.security.auth.spi.UsersRolesLoginModule] findResource: null | 2004-11-10 18:13:58,850 TRACE [org.jboss.security.auth.spi.UsersRolesLoginModule] Properties file=file:/home/demo/arnold/Kensington/jboss/server/default-01/conf/users.properties | 2004-11-10 18:13:58,850 TRACE [org.jboss.security.auth.spi.UsersRolesLoginModule] findResource: null | 2004-11-10 18:13:58,850 TRACE [org.jboss.security.auth.spi.UsersRolesLoginModule] Properties file=file:/home/demo/arnold/Kensington/jboss/server/default-01/conf/roles.properties | 2004-11-10 18:13:58,850 TRACE [org.jboss.security.auth.spi.UsersRolesLoginModule] login | 2004-11-10 18:13:58,850 TRACE [org.jboss.security.auth.spi.UsersRolesLoginModule] User 'demo' authenticated, loginOk=true | 2004-11-10 18:13:58,850 ERROR [org.jboss.ejb.plugins.LogInterceptor] EJBException, causedBy: | java.lang.SecurityException: Insufficient method permissions, principal=demo, method=executeNonBlocking, interface=REMOTE, requiredRoles=[<ANYBODY>], principalRoles=null | at org.jboss.ejb.plugins.SecurityInterceptor.checkSecurityAssociation(SecurityInterceptor.java:229) | at org.jboss.ejb.plugins.SecurityInterceptor.invoke(SecurityInterceptor.java:109) | at org.jboss.resource.connectionmanager.CachedConnectionInterceptor.invoke(CachedConnectionInterceptor.java:185) | at org.jboss.ejb.plugins.AbstractTxInterceptor.invokeNext(AbstractTxInterceptor.java:84) | at org.jboss.ejb.plugins.AbstractTxInterceptorBMT.invokeNext(AbstractTxInterceptorBMT.java:144) | Scott, do you think this also indicates a race condition? View the original post : http://www.jboss.org/index.html?module=bb&op=viewtopic&p=3854663#3854663 Reply to the post : http://www.jboss.org/index.html?module=bb&op=posting&mode=reply&p=3854663 ------------------------------------------------------- This SF.Net email is sponsored by: Sybase ASE Linux Express Edition - download now for FREE LinuxWorld Reader's Choice Award Winner for best database on Linux. http://ads.osdn.com/?ad_id=5588&alloc_id=12065&op=click _______________________________________________ JBoss-user mailing list [EMAIL PROTECTED] https://lists.sourceforge.net/lists/listinfo/jboss-user
