<!DOCTYPE HTML PUBLIC "-//W3C//DTD HTML 4.0 Transitional//EN">
<html>
<body link="#355491" alink="#4262a1" vlink="#355491" style="background: #e2e2e2; margin: 0; padding: 20px;">
<div>
<table cellpadding="0" bgcolor="#FFFFFF" border="0" cellspacing="0" style="border: 1px solid #dadada; margin-bottom: 30px; width: 100%; -moz-border-radius: 6px; -webkit-border-radius: 6px;">
<tbody>
<tr>
<td>
<table border="0" cellpadding="0" cellspacing="0" bgcolor="#FFFFFF" style="border: solid 2px #ccc; background: #dadada; width: 100%; -moz-border-radius: 6px; -webkit-border-radius: 6px;">
<tbody>
<tr>
<td bgcolor="#000000" valign="middle" height="58px" style="border-bottom: 1px solid #ccc; padding: 20px; -moz-border-radius-topleft: 3px; -moz-border-radius-topright: 3px; -webkit-border-top-right-radius: 5px; -webkit-border-top-left-radius: 5px;">
<h1 style="color: #333333; font: bold 22px Arial, Helvetica, sans-serif; margin: 0; display: block !important;">
<!-- To have a header image/logo replace the name below with your img tag -->
<!-- Email clients will render the images when the message is read so any image -->
<!-- must be made available on a public server, so that all recipients can load the image. -->
<a href="https://community.jboss.org/index.jspa" style="text-decoration: none; color: #E1E1E1">JBoss Community</a></h1>
</td>
</tr>
<tr>
<td bgcolor="#FFFFFF" style="font: normal 12px Arial, Helvetica, sans-serif; color:#333333; padding: 20px; -moz-border-radius-bottomleft: 4px; -moz-border-radius-bottomright: 4px; -webkit-border-bottom-right-radius: 5px; -webkit-border-bottom-left-radius: 5px;"><h3 style="margin: 10px 0 5px; font-size: 17px; font-weight: normal;">
How to configurate the GateIn3.4 & JBossAS7 SSO login
</h3>
<span style="margin-bottom: 10px;">
created by <a href="https://community.jboss.org/people/halbert">halbert</a> in <i>JBoss Portal</i> - <a href="https://community.jboss.org/message/759326#759326">View the full discussion</a>
</span>
<hr style="margin: 20px 0; border: none; background-color: #dadada; height: 1px;">
<div class="jive-rendered-content"><p>There is some document which guide me to configure the GateIn3.2 & JBossAS 6 , but the document is not fit for JBoss7 & GateIn3.4. I search my document and I have configurated the standalone.xml  as following </p><p>1) change standalone.xml </p><p style="min-height: 8pt; height: 8pt; padding: 0px;"> </p><table height="406" style="width: 1130px;"><tbody><tr><td style=";">            </td><td style=";"><security-domain name="gatein-domain" cache-type="default"></td></tr><tr><td style=";">                </td><td style=";"><authentication></td></tr><tr><td style=";">                    </td><td style=";"><login-module code="org.gatein.wci.security.WCILoginModule" flag="optional"></td></tr><tr><td style=";">                        </td><td style=";"><module-option name="portalContainerName" value="portal"/></td></tr><tr><td style=";">                        </td><td style=";"><module-option name="realmName" value="gatein-domain"/></td></tr><tr><td style=";">                    </td><td style=";"></login-module></td></tr><tr><td style=";">                    </td><td style=";"><login-module code="org.exoplatform.services.security.jaas.SharedStateLoginModule" flag="required"></td></tr><tr><td style=";">                        </td><td style=";"><module-option name="portalContainerName" value="portal"/></td></tr><tr><td style=";">                        </td><td style=";"><module-option name="realmName" value="gatein-domain"/></td></tr><tr><td style=";">                    </td><td style=";"></login-module></td></tr><tr><td style=";">                    </td><td style=";"><login-module code="org.gatein.sso.agent.login.SSOLoginModule" flag="required"></td></tr><tr><td style=";">                        </td><td style=";"><module-option name="portalContainerName" value="portal"/></td></tr><tr><td style=";">                        </td><td style=";"><module-option name="realmName" value="gatein-domain"/></td></tr><tr><td style=";">                    </td><td style=";"></login-module></td></tr><tr><td style=";"></td><td style=";"><login-module code="org.exoplatform.services.security.j2ee.JbossLoginModule" flag="required"></td></tr><tr><td style=";">                        </td><td style=";"><module-option name="portalContainerName" value="portal"/></td></tr><tr><td style=";">                        </td><td style=";"><module-option name="realmName" value="gatein-domain"/></td></tr><tr><td style=";">                    </td><td style=";"></login-module></td><td style=";"></td><td style=";"></td><td style=";"></td><td style=";"></td><td style=";"></td><td style=";"></td></tr><tr><td style=";">                </td><td style=";"></authentication></td></tr><tr><td style=";">            </td><td style=";"></security-domain></td></tr></tbody></table><p style="min-height: 8pt; height: 8pt; padding: 0px;"> </p><p>2) copy cas-client-core-3.1.9.jar,sso-auth-callback-1.1.2-Beta02.jar,sso-agent-1.1.2-Beta02.jar to   E:\GateIn-3.4-jbossas7\gatein\deployments\gatein.ear\lib</p><p><span>3) configurate the client portal.war and web.war as </span><a class="jive-link-external-small" href="http://docs.jboss.com/gatein/portal/3.4.0.M01/reference-guide/en-US/html_single/index.html#sect-Reference_Guide-Single_Sign_On-CAS_Central_Authentication_Service" target="_blank">http://docs.jboss.com/gatein/portal/3.4.0.M01/reference-guide/en-US/html_single/index.html#sect-Reference_Guide-Single_Sign_On-CAS_Central_Authentication_Service</a><span> guided. </span></p><p>4) start the JBoss7 and login with CAS server. </p><p>5) get exception  </p><p style="min-height: 8pt; height: 8pt; padding: 0px;"> </p><p>09:06:45,457 ERROR [org.gatein.sso.agent.login.SSOLoginModule] (http--127.0.0.1-8080-11) ---------------------------------------------------------</p><p>09:06:45,457 ERROR [org.gatein.sso.agent.login.SSOLoginModule] (http--127.0.0.1-8080-11) SSOLogin Failed. Credential Not Found!!</p><p>09:06:45,457 ERROR [org.gatein.sso.agent.login.SSOLoginModule] (http--127.0.0.1-8080-11) ---------------------------------------------------------</p><p>09:06:45,477 ERROR [org.jboss.security.authentication.JBossCachedAuthenticationManager] (http--127.0.0.1-8080-11) Login failure: javax.security.auth.login.LoginException: Login failed for demo</p><p>    at org.exoplatform.services.security.jaas.DefaultLoginModule.login(DefaultLoginModule.java:136) [exo.core.component.security.core-2.4.6-GA.jar:2.4.6-GA]</p><p>    at sun.reflect.NativeMethodAccessorImpl.invoke0(Native Method) [rt.jar:1.7.0_06]</p><p>    at sun.reflect.NativeMethodAccessorImpl.invoke(NativeMethodAccessorImpl.java:57) [rt.jar:1.7.0_06]</p><p>    at sun.reflect.DelegatingMethodAccessorImpl.invoke(DelegatingMethodAccessorImpl.java:43) [rt.jar:1.7.0_06]</p><p>    at java.lang.reflect.Method.invoke(Method.java:601) [rt.jar:1.7.0_06]</p><p>    at javax.security.auth.login.LoginContext.invoke(LoginContext.java:784) [rt.jar:1.7.0_06]</p><p>    at javax.security.auth.login.LoginContext.access$000(LoginContext.java:203) [rt.jar:1.7.0_06]</p><p>    at javax.security.auth.login.LoginContext$4.run(LoginContext.java:698) [rt.jar:1.7.0_06]</p><p>    at javax.security.auth.login.LoginContext$4.run(LoginContext.java:696) [rt.jar:1.7.0_06]</p><p>    at java.security.AccessController.doPrivileged(Native Method) [rt.jar:1.7.0_06]</p><p>    at javax.security.auth.login.LoginContext.invokePriv(LoginContext.java:695) [rt.jar:1.7.0_06]</p><p>    at javax.security.auth.login.LoginContext.login(LoginContext.java:594) [rt.jar:1.7.0_06]</p><p>    at org.jboss.security.authentication.JBossCachedAuthenticationManager.defaultLogin(JBossCachedAuthenticationManager.java:449) [picketbox-infinispan-4.0.6.final.jar:4.0.6.final]</p><p>    at org.jboss.security.authentication.JBossCachedAuthenticationManager.proceedWithJaasLogin(JBossCachedAuthenticationManager.java:383) [picketbox-infinispan-4.0.6.final.jar:4.0.6.final]</p><p>    at org.jboss.security.authentication.JBossCachedAuthenticationManager.authenticate(JBossCachedAuthenticationManager.java:371) [picketbox-infinispan-4.0.6.final.jar:4.0.6.final]</p><p>    at org.jboss.security.authentication.JBossCachedAuthenticationManager.isValid(JBossCachedAuthenticationManager.java:160) [picketbox-infinispan-4.0.6.final.jar:4.0.6.final]</p><p>    at org.jboss.as.web.security.JBossWebRealm.authenticate(JBossWebRealm.java:215) [jboss-as-web-7.1.0.Final.jar:7.1.0.Final]</p><p>    at org.apache.catalina.authenticator.AuthenticatorBase.login(AuthenticatorBase.java:324) [jbossweb-7.0.10.Final.jar:]</p><p>    at org.apache.catalina.connector.Request.login(Request.java:3252) [jbossweb-7.0.10.Final.jar:]</p><p>    at org.apache.catalina.connector.RequestFacade.login(RequestFacade.java:1082) [jbossweb-7.0.10.Final.jar:]</p><p>    at javax.servlet.http.HttpServletRequestWrapper.login(HttpServletRequestWrapper.java:323) [jboss-servlet-api_3.0_spec-1.0.0.Final.jar:1.0.0.Final]</p><p>    at org.gatein.wci.jboss.JB7ServletContainerContext.login(JB7ServletContainerContext.java:159) [wci-jboss7-2.2.0-Beta02.jar:2.2.0-Beta02]</p><p>    at org.gatein.wci.impl.DefaultServletContainer.login(DefaultServletContainer.java:109) [wci-wci-2.2.0-Beta02.jar:2.2.0-Beta02]</p><p>    at org.exoplatform.web.login.InitiateLoginServlet.doGet(InitiateLoginServlet.java:111) [exo.portal.component.web.security-3.4.0.M01.jar:3.4.0.M01]</p><p>    at javax.servlet.http.HttpServlet.service(HttpServlet.java:734) [jboss-servlet-api_3.0_spec-1.0.0.Final.jar:1.0.0.Final]</p><p>    at org.exoplatform.container.web.AbstractHttpServlet.onService(AbstractHttpServlet.java:183) [exo.kernel.container-2.3.6-GA-JBAS7.jar:2.3.6-GA-JBAS7]</p><p>    at org.exoplatform.container.web.AbstractHttpServlet.service(AbstractHttpServlet.java:132) [exo.kernel.container-2.3.6-GA-JBAS7.jar:2.3.6-GA-JBAS7]</p><p>    at javax.servlet.http.HttpServlet.service(HttpServlet.java:847) [jboss-servlet-api_3.0_spec-1.0.0.Final.jar:1.0.0.Final]</p><p>    at org.apache.catalina.core.ApplicationFilterChain.internalDoFilter(ApplicationFilterChain.java:329) [jbossweb-7.0.10.Final.jar:]</p><p>    at org.apache.catalina.core.ApplicationFilterChain.doFilter(ApplicationFilterChain.java:248) [jbossweb-7.0.10.Final.jar:]</p><p>    at org.apache.catalina.core.ApplicationDispatcher.invoke(ApplicationDispatcher.java:734) [jbossweb-7.0.10.Final.jar:]</p><p>    at org.apache.catalina.core.ApplicationDispatcher.processRequest(ApplicationDispatcher.java:541) [jbossweb-7.0.10.Final.jar:]</p><p>    at org.apache.catalina.core.ApplicationDispatcher.doForward(ApplicationDispatcher.java:479) [jbossweb-7.0.10.Final.jar:]</p><p>    at org.apache.catalina.core.ApplicationDispatcher.forward(ApplicationDispatcher.java:407) [jbossweb-7.0.10.Final.jar:]</p><p>    at org.apache.catalina.authenticator.FormAuthenticator.forwardToLoginPage(FormAuthenticator.java:362) [jbossweb-7.0.10.Final.jar:]</p><p>    at org.apache.catalina.authenticator.FormAuthenticator.authenticate(FormAuthenticator.java:265) [jbossweb-7.0.10.Final.jar:]</p><p>    at org.apache.catalina.authenticator.AuthenticatorBase.invoke(AuthenticatorBase.java:455) [jbossweb-7.0.10.Final.jar:]</p><p>    at org.jboss.as.web.security.SecurityContextAssociationValve.invoke(SecurityContextAssociationValve.java:154) [jboss-as-web-7.1.0.Final.jar:7.1.0.Final]</p><p>    at org.apache.catalina.core.StandardHostValve.invoke(StandardHostValve.java:155) [jbossweb-7.0.10.Final.jar:]</p><p>    at org.apache.catalina.valves.ErrorReportValve.invoke(ErrorReportValve.java:102) [jbossweb-7.0.10.Final.jar:]</p><p>    at org.apache.catalina.core.StandardEngineValve.invoke(StandardEngineValve.java:109) [jbossweb-7.0.10.Final.jar:]</p><p>    at org.apache.catalina.connector.CoyoteAdapter.service(CoyoteAdapter.java:368) [jbossweb-7.0.10.Final.jar:]</p><p>    at org.apache.coyote.http11.Http11Processor.process(Http11Processor.java:877) [jbossweb-7.0.10.Final.jar:]</p><p>    at org.apache.coyote.http11.Http11Protocol$Http11ConnectionHandler.process(Http11Protocol.java:671) [jbossweb-7.0.10.Final.jar:]</p><p>    at org.apache.tomcat.util.net.JIoEndpoint$Worker.run(JIoEndpoint.java:930) [jbossweb-7.0.10.Final.jar:]</p><p>    at java.lang.Thread.run(Thread.java:722) [rt.jar:1.7.0_06]</p><p style="min-height: 8pt; height: 8pt; padding: 0px;"> </p><p>09:06:45,507 TRACE [org.jboss.security.authentication.JBossCachedAuthenticationManager] (http--127.0.0.1-8080-11) End isValid, false</p><p>09:06:45,507 TRACE [org.jboss.as.web.security] (http--127.0.0.1-8080-11) End invoke, caller=null</p><p>09:06:45,507 TRACE [org.jboss.security.SecurityRolesAssociation] (http--127.0.0.1-8080-11) Setting threadlocal:null</p><p>09:06:45,517 TRACE [org.jboss.as.web.security] (http--127.0.0.1-8080-11) Begin invoke, caller=null</p><p>09:06:45,517 TRACE [org.jboss.security.authentication.JBossCachedAuthenticationManager] (http--127.0.0.1-8080-11) Begin isValid, principal:demo, cache entry: null</p><p>09:06:45,517 TRACE [org.jboss.security.authentication.JBossCachedAuthenticationManager] (http--127.0.0.1-8080-11) defaultLogin, principal=demo</p><p>09:06:45,517 TRACE [org.jboss.security.auth.login.XMLLoginConfigImpl] (http--127.0.0.1-8080-11) Begin getAppConfigurationEntry(gatein-domain), size=5</p><p>09:06:45,517 TRACE [org.jboss.security.auth.login.XMLLoginConfigImpl] (http--127.0.0.1-8080-11) End getAppConfigurationEntry(gatein-domain), authInfo=AppConfigurationEntry[]:</p><p>[0]</p><p>LoginModule Class: org.gatein.wci.security.WCILoginModule</p><p>ControlFlag: LoginModuleControlFlag: optional</p><p>Options:</p><p>name=realmName, value=gatein-domain</p><p>name=portalContainerName, value=portal</p><p>[1]</p><p>LoginModule Class: org.gatein.sso.agent.login.SSOLoginModule</p><p>ControlFlag: LoginModuleControlFlag: required</p><p>Options:</p><p>name=realmName, value=gatein-domain</p><p>name=portalContainerName, value=portal</p><p>[2]</p><p>LoginModule Class: org.exoplatform.services.security.jaas.SharedStateLoginModule</p><p>ControlFlag: LoginModuleControlFlag: required</p><p>Options:</p><p>name=realmName, value=gatein-domain</p><p>name=portalContainerName, value=portal</p><p>[3]</p><p>LoginModule Class: org.exoplatform.services.security.j2ee.JbossLoginModule</p><p>ControlFlag: LoginModuleControlFlag: required</p><p>Options:</p><p>name=realmName, value=gatein-domain</p><p>name=portalContainerName, value=portal</p><p style="min-height: 8pt; height: 8pt; padding: 0px;"> </p><p>09:06:45,568 ERROR [org.jboss.security.authentication.JBossCachedAuthenticationManager] (http--127.0.0.1-8080-11) Login failure: javax.security.auth.login.LoginException: Login failed for demo</p><p>    at org.exoplatform.services.security.jaas.SharedStateLoginModule.login(SharedStateLoginModule.java:82) [exo.core.component.security.core-2.4.6-GA.jar:2.4.6-GA]</p><p>    at sun.reflect.NativeMethodAccessorImpl.invoke0(Native Method) [rt.jar:1.7.0_06]</p><p>    at sun.reflect.NativeMethodAccessorImpl.invoke(NativeMethodAccessorImpl.java:57) [rt.jar:1.7.0_06]</p><p>    at sun.reflect.DelegatingMethodAccessorImpl.invoke(DelegatingMethodAccessorImpl.java:43) [rt.jar:1.7.0_06]</p><p>    at java.lang.reflect.Method.invoke(Method.java:601) [rt.jar:1.7.0_06]</p><p>    at javax.security.auth.login.LoginContext.invoke(LoginContext.java:784) [rt.jar:1.7.0_06]</p><p>    at javax.security.auth.login.LoginContext.access$000(LoginContext.java:203) [rt.jar:1.7.0_06]</p><p>    at javax.security.auth.login.LoginContext$4.run(LoginContext.java:698) [rt.jar:1.7.0_06]</p><p>    at javax.security.auth.login.LoginContext$4.run(LoginContext.java:696) [rt.jar:1.7.0_06]</p><p>    at java.security.AccessController.doPrivileged(Native Method) [rt.jar:1.7.0_06]</p><p>    at javax.security.auth.login.LoginContext.invokePriv(LoginContext.java:695) [rt.jar:1.7.0_06]</p><p>    at javax.security.auth.login.LoginContext.login(LoginContext.java:594) [rt.jar:1.7.0_06]</p><p>    at org.jboss.security.authentication.JBossCachedAuthenticationManager.defaultLogin(JBossCachedAuthenticationManager.java:449) [picketbox-infinispan-4.0.6.final.jar:4.0.6.final]</p><p>    at org.jboss.security.authentication.JBossCachedAuthenticationManager.proceedWithJaasLogin(JBossCachedAuthenticationManager.java:383) [picketbox-infinispan-4.0.6.final.jar:4.0.6.final]</p><p>    at org.jboss.security.authentication.JBossCachedAuthenticationManager.authenticate(JBossCachedAuthenticationManager.java:371) [picketbox-infinispan-4.0.6.final.jar:4.0.6.final]</p><p>    at org.jboss.security.authentication.JBossCachedAuthenticationManager.isValid(JBossCachedAuthenticationManager.java:160) [picketbox-infinispan-4.0.6.final.jar:4.0.6.final]</p><p>    at org.jboss.as.web.security.JBossWebRealm.authenticate(JBossWebRealm.java:215) [jboss-as-web-7.1.0.Final.jar:7.1.0.Final]</p><p>    at org.apache.catalina.authenticator.FormAuthenticator.authenticate(FormAuthenticator.java:280) [jbossweb-7.0.10.Final.jar:]</p><p>    at org.apache.catalina.authenticator.AuthenticatorBase.invoke(AuthenticatorBase.java:381) [jbossweb-7.0.10.Final.jar:]</p><p>    at org.jboss.as.web.security.SecurityContextAssociationValve.invoke(SecurityContextAssociationValve.java:154) [jboss-as-web-7.1.0.Final.jar:7.1.0.Final]</p><p>    at org.apache.catalina.core.StandardHostValve.invoke(StandardHostValve.java:155) [jbossweb-7.0.10.Final.jar:]</p><p>    at org.apache.catalina.valves.ErrorReportValve.invoke(ErrorReportValve.java:102) [jbossweb-7.0.10.Final.jar:]</p><p>    at org.apache.catalina.core.StandardEngineValve.invoke(StandardEngineValve.java:109) [jbossweb-7.0.10.Final.jar:]</p><p>    at org.apache.catalina.connector.CoyoteAdapter.service(CoyoteAdapter.java:368) [jbossweb-7.0.10.Final.jar:]</p><p>    at org.apache.coyote.http11.Http11Processor.process(Http11Processor.java:877) [jbossweb-7.0.10.Final.jar:]</p><p>    at org.apache.coyote.http11.Http11Protocol$Http11ConnectionHandler.process(Http11Protocol.java:671) [jbossweb-7.0.10.Final.jar:]</p><p>    at org.apache.tomcat.util.net.JIoEndpoint$Worker.run(JIoEndpoint.java:930) [jbossweb-7.0.10.Final.jar:]</p><p>    at java.lang.Thread.run(Thread.java:722) [rt.jar:1.7.0_06]</p><p>Caused by: javax.security.auth.login.LoginException: Login failed for demo</p><p>    at org.exoplatform.services.organization.auth.OrganizationAuthenticatorImpl.validateUser(OrganizationAuthenticatorImpl.java:155) [exo.core.component.organization.api-2.4.6-GA.jar:2.4.6-GA]</p><p>    at org.exoplatform.services.security.jaas.SharedStateLoginModule.login(SharedStateLoginModule.java:70) [exo.core.component.security.core-2.4.6-GA.jar:2.4.6-GA]</p><p>    ... 27 more</p><p style="min-height: 8pt; height: 8pt; padding: 0px;"> </p><p>09:06:45,599 TRACE [org.jboss.security.authentication.JBossCachedAuthenticationManager] (http--127.0.0.1-8080-11) End isValid, false</p><p>09:06:45,739 TRACE [org.jboss.as.web.security] (http--127.0.0.1-8080-11) End invoke, caller=null</p><p>09:06:45,739 TRACE [org.jboss.security.SecurityRolesAssociation] (http--127.0.0.1-8080-11) Setting threadlocal:null</p><p>09:06:45,755 TRACE [org.jboss.as.web.security] (http--127.0.0.1-8080-11) Begin invoke, caller=null</p><p>09:06:45,755 TRACE [org.jboss.as.web.security] (http--127.0.0.1-8080-11) End invoke, caller=null</p><p>09:06:45,755 TRACE [org.jboss.security.SecurityRolesAssociation] (http--127.0.0.1-8080-11) Setting threadlocal:null</p></div>
<div style="background-color: #f4f4f4; padding: 10px; margin-top: 20px;">
<p style="margin: 0;">Reply to this message by <a href="https://community.jboss.org/message/759326#759326">going to Community</a></p>
<p style="margin: 0;">Start a new discussion in JBoss Portal at <a href="https://community.jboss.org/choose-container!input.jspa?contentType=1&containerType=14&container=2011">Community</a></p>
</div></td>
</tr>
</tbody>
</table>
</td>
</tr>
</tbody>
</table>
</div>
</body>
</html>