September 2006 - jboss-dev-forums

[Design of Security on JBoss] - Custom Principal Propagation Related

by anil.saldhana＠jboss.com

I have a usecase where there is a clear mismatch on what is put on the SecurityAssociation thread local principal stack and what you really want. Usecase: * User logs into a web application with form auth. * JBoss Security Mgr creates a SimplePrincipal of the username and passes to the Jaas framework. * A login module creates a custom view of the username via a Custom Principal and into the shared state map. * ClientLoginModule populates the SA threadlocal stack with the custom principal. * Now that the form authentication is fine, the JBossSecurityMgrRealm populates the SA stack with subjectcontext. Now in the servlet, the user makes a call on an ejb (no jaas login). This time the security interceptor in the proxy picks up the principal on the SA stack (which happens to be the SimplePrincipal). I think this case falls through the crack for providing end-to-end security. Workaround: a) Have an explicit jaas login in the servlet such that the ClientLoginModule places the custom principal again on the SA stack. Issue is that there needs to be a way for the password to be obtained. b) Provide an additional option on the JBossSecurityMgrRealm to plug in a custom principal class, such that this principal class gets pushed on the SA stack rather than the simple principal. I like option b) Any other thoughts? View the original post : http://www.jboss.com/index.html?module=bb&op=viewtopic&p=3973351#3973351 Reply to the post : http://www.jboss.com/index.html?module=bb&op=posting&mode=reply&p=3973351

19 years, 6 months

1
0
0 / 0

[Design of JBoss Profiler] - Re: analyzer displays empty result, even with log files crea

by michele.curioni

Is there a way to tell? I think so, otherwise there wouldn't be as many logs, and of such size. I looked at JBoss log, and it says: "Stopping DataGathering" after I called the stop method in the Profiler MBean. Curiously, from web app I can save the results (which I cannot see), and the file saved is model.obj which takes 600k. Cheers, M View the original post : http://www.jboss.com/index.html?module=bb&op=viewtopic&p=3973343#3973343 Reply to the post : http://www.jboss.com/index.html?module=bb&op=posting&mode=reply&p=3973343

19 years, 6 months

1
0
0 / 0

[Design of JBoss Profiler] - Re: analyzer displays empty result, even with log files crea

by clebert.suconic＠jboss.com

Are you sure you started/stopped capturing it correctly? View the original post : http://www.jboss.com/index.html?module=bb&op=viewtopic&p=3973339#3973339 Reply to the post : http://www.jboss.com/index.html?module=bb&op=posting&mode=reply&p=3973339

19 years, 6 months

1
0
0 / 0

[Design of JBoss Profiler] - Re: analyzer displays empty result, even with log files crea

by michele.curioni

Thanks for the quick reply. I tried changing the filters, and also the option that you suggested with no filter, but still no output. When I ran with no filter, the web app took long time to process the results, but still didn't display anything. Cheers, Michele View the original post : http://www.jboss.com/index.html?module=bb&op=viewtopic&p=3973338#3973338 Reply to the post : http://www.jboss.com/index.html?module=bb&op=posting&mode=reply&p=3973338

19 years, 6 months

1
0
0 / 0

[Design of Messaging on JBoss (Messaging/JBoss)] - Re: JBMESSAGING-549 - Lease set to -1 causes exception

by clebert.suconic＠jboss.com

I have commited the proposed fix on Remoting. If this is not okay, please revert it (after finding another solution of course :-) ) View the original post : http://www.jboss.com/index.html?module=bb&op=viewtopic&p=3973337#3973337 Reply to the post : http://www.jboss.com/index.html?module=bb&op=posting&mode=reply&p=3973337

19 years, 6 months

1
0
0 / 0

[Design of Messaging on JBoss (Messaging/JBoss)] - JBMESSAGING-549 - Lease set to -1 causes exception

by clebert.suconic＠jboss.com

Look at ClientCrashNegativeLeaseTest before reading this post: The problem is we are setting Lease to -1 after we passed Lase=20000 on the properties of the invoker. Lease set to -1 is not setting leaeManagement to false (because of the prior test). So, a fix would be on remoting: | /// | public void setLeasePeriod(long leasePeriodValue) | { | this.leasePeriod = leasePeriodValue; | if (leasePeriod<0) | { | this.leaseManagement=false; | } | } | View the original post : http://www.jboss.com/index.html?module=bb&op=viewtopic&p=3973336#3973336 Reply to the post : http://www.jboss.com/index.html?module=bb&op=posting&mode=reply&p=3973336

19 years, 6 months

1
0
0 / 0

[Design of JBoss Profiler] - Re: analyzer displays empty result, even with log files crea

by clebert.suconic＠jboss.com

I guess you're filtering too much. Try using (-XrunjbossInspector:/YourLogDir) Only View the original post : http://www.jboss.com/index.html?module=bb&op=viewtopic&p=3973333#3973333 Reply to the post : http://www.jboss.com/index.html?module=bb&op=posting&mode=reply&p=3973333

19 years, 6 months

1
0
0 / 0

[Design of JBoss Profiler] - analyzer displays empty result, even with log files created.

by michele.curioni

Hi there, I'm running JBoss 4.02 on Windows XP. I managed to run the profiler, and I think it collected some data, because the directory is full of logs, and one of them is quite big. When I run the web app to analyze the results, it seems to be running ok, but it doesn't produce any result. I get the following output after specifying the directory where the logs are: Opening ..\serverspy_2424_thread_1158854346999_12468750000_15.log.gz Opening ..\serverspy_2424_thread_1158854358761_1390625000_16.log.gz etc. .... Processed 10000 registers (21%) Processed 20000 registers (42%) Processed 30000 registers (61%) Processed 40000 registers (82%) Process Finished.... click here After this the following pages only display tables, with no content. Any idea? Thanks, Michele View the original post : http://www.jboss.com/index.html?module=bb&op=viewtopic&p=3973331#3973331 Reply to the post : http://www.jboss.com/index.html?module=bb&op=posting&mode=reply&p=3973331

19 years, 6 months

1
0
0 / 0

[Design of JBoss Eclipse IDE (dev)] - Re: Build failed

by tcourtney835

See if one of these posts help. http://www.myeclipseide.com/PNphpBB2+file-viewtopic-t-9460-highlight-xjav... http://www.myeclipseide.com/PNphpBB2+file-viewtopic-t-8878-highlight-xjav... View the original post : http://www.jboss.com/index.html?module=bb&op=viewtopic&p=3973327#3973327 Reply to the post : http://www.jboss.com/index.html?module=bb&op=posting&mode=reply&p=3973327

19 years, 6 months

1
0
0 / 0

[Design of JBoss Admin Console] - Re: JBossMQ vs JBoss Messaging

by chilin

The webtest reported a couple of failures running against the ?all? server configuration. Some of the failures can be resolved by specifying the server name at run time, however the failures in the JmsPageTest are a little harder to resolve! Basically the test was written expecting the changes made to the JBossMQ services (e.g. MessageCache, PersistenceManager, and StateManager) are hot deployable. However with the ?all? server, the configuration files for JBossMQ are deployed under the deploy-hasingleton/jms directory. When changes are made to the config files (e.g. hsqldb-jdbc2-service.xml, hsqldb-jdbc-state-service.xml), the new values are not reflected in the mbeans until the server is restarted. This caused the JmsPageTest to fail while verifying the changes. The Admin Console?s readme file does indicate the webtest must run against the ?default? server. Looks like we?re telling the truth here!!! View the original post : http://www.jboss.com/index.html?module=bb&op=viewtopic&p=3973326#3973326 Reply to the post : http://www.jboss.com/index.html?module=bb&op=posting&mode=reply&p=3973326

19 years, 6 months

1
0
0 / 0

2026

2025

2024

2023

2022

2021

2020

2019

2018

2017

2016

2015

2014

2013

2012

2011

2010

2009

2008

2007

2006

jboss-dev-forums September 2006