I have found the problem. One of my table column was empty, but not
NULL. I don't know which column, but I have found out, that
security_credential.crendential_value of user guest was empty but not
NULL on informix. So the error message "invalid password for user
guest..." was shown in the log file. I have generated a new database
with correct null value columns... Now it works. :-)
Frank
Am 19.04.2010 12:06, schrieb Frank Otto:
Hi Woonsan,
Thanks.
The roles are correct. But the first log messages after calling
commonSubject() is on informix:
2010-04-19 11:55:30,757 [http-8180-Processor23] DEBUG
org.apache.jetspeed.components.FilteringListableBeanFactory -
Returning cached instance of singleton bean 'userContentCacheManager'
2010-04-19 11:55:30,757 [http-8180-Processor23] DEBUG
org.apache.jetspeed.components.FilteringListableBeanFactory -
Returning cached instance of singleton bean
'org.apache.jetspeed.audit.AuditActivity'
2010-04-19 11:55:30,768 [http-8180-Processor19] DEBUG
org.apache.jetspeed.components.FilteringListableBeanFactory -
Returning cached instance of singleton bean 'desktop-pipeline'
On mssql:
2010-04-19 11:53:20,282 [http-8180-Processor20] DEBUG
org.apache.catalina.authenticator.FormAuthenticator - Authentication
of 'OTF' was successful
2010-04-19 11:53:20,283 [http-8180-Processor20] DEBUG
org.apache.catalina.authenticator.FormAuthenticator - Redirecting to
original '/deleco-cockpit/login/redirector?token=OTF-1271670798431'
2010-04-19 11:53:20,283 [http-8180-Processor20] DEBUG
org.apache.catalina.authenticator.AuthenticatorBase - Failed
authenticate() test ??/deleco-cockpit/login/j_security_check
2010-04-19 11:53:20,286 [http-8180-Processor23] DEBUG
org.apache.catalina.authenticator.AuthenticatorBase - Security
checking request GET /deleco-cockpit/login/redirector
2010-04-19 11:53:20,286 [http-8180-Processor23] DEBUG
org.apache.catalina.authenticator.AuthenticatorBase - Calling
hasUserDataPermission()
2010-04-19 11:53:20,286 [http-8180-Processor23] DEBUG
org.apache.catalina.authenticator.AuthenticatorBase - Calling
authenticate()
2010-04-19 11:53:20,286 [http-8180-Processor23] DEBUG
org.apache.catalina.authenticator.FormAuthenticator - Restore request
from session 'AA649EB1F239EEFE143A4155141643F5'
2010-04-19 11:53:20,286 [http-8180-Processor23] DEBUG
org.apache.catalina.authenticator.AuthenticatorBase - Authenticated
'OTF' with type 'FORM'
2010-04-19 11:53:20,286 [http-8180-Processor23] DEBUG
org.apache.catalina.authenticator.FormAuthenticator - Proceed to
restored request
2010-04-19 11:53:20,286 [http-8180-Processor23] DEBUG
org.apache.catalina.authenticator.AuthenticatorBase - Calling
accessControl()
2010-04-19 11:53:20,287 [http-8180-Processor23] DEBUG
org.apache.catalina.authenticator.AuthenticatorBase - Successfully
passed all security constraints
2010-04-19 11:53:20,288 [http-8180-Processor23] DEBUG
org.apache.jetspeed.components.FilteringListableBeanFactory -
Returning cached instance of singleton bean 'userContentCacheManager'
2010-04-19 11:53:20,288 [http-8180-Processor23] DEBUG
org.apache.jetspeed.components.FilteringListableBeanFactory -
Returning cached instance of singleton bean
'org.apache.jetspeed.audit.AuditActivity'
2010-04-19 11:53:20,294 [http-8180-Processor20] DEBUG
org.apache.catalina.authenticator.AuthenticatorBase - Security
checking request GET /deleco-cockpit/desktop
2010-04-19 11:53:20,294 [http-8180-Processor20] DEBUG
org.apache.catalina.authenticator.AuthenticatorBase - We have cached
auth type FORM for principal
GenericPrincipal[OTF(ROLE_10,ROLE_11,ROLE_12,ROLE_13,ROLE_14,ROLE_15,ROLE_19,ROLE_20,ROLE_21,ROLE_22,ROLE_23,ROLE_24,ROLE_3,ROLE_4,ROLE_5,ROLE_6,ROLE_7,ROLE_8,ROLE_9,portal-user,user,)]
2010-04-19 11:53:20,294 [http-8180-Processor20] DEBUG
org.apache.catalina.authenticator.AuthenticatorBase - Not subject to
any constraint
2010-04-19 11:53:20,294 [http-8180-Processor20] DEBUG
org.apache.jetspeed.components.FilteringListableBeanFactory -
Returning cached instance of singleton bean 'desktop-pipeline'
I have no idea, why the log message are different.
Am 19.04.2010 11:38, schrieb Woonsan Ko:
Jetspeed-2 provides JAAS LoginModule, so Tomcat will invoke the
LoginModule for authentication.
I think you can have a look at
org.apache.jetspeed.security.impl.DefaultLoginModule#commitSubject()
to see how roles are mapped.
-Woonsan
---------------------------------------------------------------------
To unsubscribe, e-mail: [email protected]
For additional commands, e-mail: [email protected]
