I have a user with username "smx" and password "smx".
The user is athenticated but not authorized on the bus to use any service.
When I make a request using this user, I get following error on servicemix
logs:
DEBUG - JAASAuthenticationService - Authenticating 'smx' with 'smx'
DEBUG - ConsumerProcessor - Receiving HTTP request: POST
/example/ HTTP/1.1
Authorization: Basic c214OnNteA==
User-Agent: Jakarta Commons-HttpClient/3.1
Host: localhost:8192
Content-Length: 179
DEBUG - HttpComponent - Created correlation id:
ID:192.168.2.64-11a7656b905-17:7
DEBUG - DeliveryChannelImpl - Send
ID:192.168.2.64-11a7656b905-17:7 in DeliveryChannel{servicemix-http}
WARN - jetty - /example/
java.lang.IllegalStateException: Cannot write non xml faults for non soap
messages
at
org.apache.servicemix.soap.marshalers.SoapWriter.writeSimpleMessage(SoapWriter.java:124)
at
org.apache.servicemix.soap.marshalers.SoapWriter.write(SoapWriter.java:92)
at
org.apache.servicemix.http.processors.ConsumerProcessor.sendFault(ConsumerProcessor.java:277)
at
org.apache.servicemix.http.processors.ConsumerProcessor.process(ConsumerProcessor.java:176)
at
org.apache.servicemix.http.HttpBridgeServlet.doPost(HttpBridgeServlet.java:71)
at javax.servlet.http.HttpServlet.service(HttpServlet.java:709)
at javax.servlet.http.HttpServlet.service(HttpServlet.java:802)
at
org.mortbay.jetty.servlet.ServletHolder.handle(ServletHolder.java:487)
at
org.mortbay.jetty.servlet.ServletHandler.handle(ServletHandler.java:362)
at
org.mortbay.jetty.security.SecurityHandler.handle(SecurityHandler.java:216)
at
org.mortbay.jetty.handler.ContextHandler.handle(ContextHandler.java:712)
at
org.mortbay.jetty.handler.ContextHandlerCollection.handle(ContextHandlerCollection.java:211)
at
org.mortbay.jetty.handler.HandlerCollection.handle(HandlerCollection.java:114)
at
org.mortbay.jetty.handler.HandlerWrapper.handle(HandlerWrapper.java:139)
at org.mortbay.jetty.Server.handle(Server.java:313)
at
org.mortbay.jetty.HttpConnection.handleRequest(HttpConnection.java:506)
at
org.mortbay.jetty.HttpConnection$RequestHandler.content(HttpConnection.java:844)
at org.mortbay.jetty.HttpParser.parseNext(HttpParser.java:644)
at org.mortbay.jetty.HttpParser.parseAvailable(HttpParser.java:211)
at org.mortbay.jetty.HttpConnection.handle(HttpConnection.java:381)
at
org.mortbay.io.nio.SelectChannelEndPoint.run(SelectChannelEndPoint.java:396)
at
org.mortbay.thread.BoundedThreadPool$PoolThread.run(BoundedThreadPool.java:442)
Everything goes fine for the user who is both authenticated as well as
authorized. Now how to handle this error when user is authenticated but not
authorized.
Pratibha
--
View this message in context:
http://www.nabble.com/How-to-handle-unauthorized-user-tp17771342p17771342.html
Sent from the ServiceMix - User mailing list archive at Nabble.com.
