11:20 a.m.
i10 [https://community.jboss.org/people/i10] created the discussion
"isCallerInRole(...) returns wrong result"
To view the discussion, visit: https://community.jboss.org/message/739984#739984
--------------------------------------------------------------
A query to isCallerInRole("VIP") returns the following results:
|| *User* || *Roles* || *Expected Result
* || *Effective Result
* ||
| tom | Customer | false | false |
| sam | Customer, VIP | true | *false* |
| mike | VIP | true | true |
In JBoss 4,5 and 6 the query works fine. With JBoss 7 the result for user sam is false
instead of true.
--------------------------------------------------------------
Reply to this message by going to Community
[https://community.jboss.org/message/739984#739984]
Start a new discussion in JBoss AS 7 Development at Community
[https://community.jboss.org/choose-container!input.jspa?contentType=1&...]
2:15 p.m.
New subject: [JBoss AS 7 Development] - Re: isCallerInRole(...) returns wrong result
Stefan Guilhen [https://community.jboss.org/people/sguilhen] created the discussion
"Re: isCallerInRole(...) returns wrong result"
To view the discussion, visit: https://community.jboss.org/message/740007#740007
--------------------------------------------------------------
Could you please provide more information about the security configuration for you
application? I'm particularly interested in the security domain config with its login
modules.
--------------------------------------------------------------
Reply to this message by going to Community
[https://community.jboss.org/message/740007#740007]
Start a new discussion in JBoss AS 7 Development at Community
[https://community.jboss.org/choose-container!input.jspa?contentType=1&...]
1:21 a.m.
New subject: [JBoss AS 7 Development] - Re: isCallerInRole(...) returns wrong result
i10 [https://community.jboss.org/people/i10] created the discussion
"Re: isCallerInRole(...) returns wrong result"
To view the discussion, visit: https://community.jboss.org/message/740069#740069
--------------------------------------------------------------
I'm using the predefined security domain *other* and added the user's with the
*JBOSS_HOME/add_user.bat* Scritpt to the ApplicationRealm.
*standalone-full.xml snippet:*
<subsystem xmlns="urn:jboss:domain:security:1.1">
<security-domains>
<security-domain name="other"
cache-type="default">
<authentication>
<login-module code="Remoting"
flag="optional">
<module-option name="password-stacking"
value="useFirstPass"/>
</login-module>
<login-module code="RealmUsersRoles"
flag="required">
<module-option name="usersProperties"
value="${jboss.server.config.dir}/application-users.properties"/>
<module-option name="rolesProperties"
value="${jboss.server.config.dir}/application-roles.properties"/>
<module-option name="realm"
value="ApplicationRealm"/>
<module-option name="password-stacking"
value="useFirstPass"/>
<module-option name="unauthenticatedIdentity"
value="guest"/>
</login-module>
*Servelt snippet:*
@ServletSecurity(@HttpConstraint(rolesAllowed = {"Customer", "VIP"}))
public class LoginServlet extends HttpServlet {
--------------------------------------------------------------
Reply to this message by going to Community
[https://community.jboss.org/message/740069#740069]
Start a new discussion in JBoss AS 7 Development at Community
[https://community.jboss.org/choose-container!input.jspa?contentType=1&...]
4605
days inactive
4606
days old
jboss-dev-forums@lists.jboss.org
2 comments
2 participants
participants (2)
-
i10 -
Stefan Guilhen