10:53 p.m.
Apache Tomcat SingleSignonValve not being invoked
-------------------------------------------------
Key: AS7-3210
URL: https://issues.jboss.org/browse/AS7-3210
Project: Application Server 7
Issue Type: Bug
Components: Security
Reporter: Luis Barreiro
Assignee: Anil Saldhana
Despite having org.apache.catalina.authenticator.SingleSignOn valve defined in
jboss-web.xml and <sso> element present in virtual-host configuration, there is no
invocation of the valve, neither a JSESSIONIDSSO cookie is present in responses.
The valve is present in the pipeline, but the following line appears in the server log:
[org.apache.catalina.authenticator.AuthenticatorBase] (MSC service thread 1-2) No
SingleSignOn Valve is present
Testcase available at
https://github.com/barreiro/jboss-as/tree/JBQA-5281/testsuite/integration...
--
This message is automatically generated by JIRA.
If you think it was sent incorrectly, please contact your JIRA administrators:
https://issues.jboss.org/secure/ContactAdministrators!default.jspa
For more information on JIRA, see: http://www.atlassian.com/software/jira
12:37 p.m.
[
https://issues.jboss.org/browse/AS7-3210?page=com.atlassian.jira.plugin.s...
]
Anil Saldhana commented on AS7-3210:
------------------------------------
Please ping Remy as JBossWeb update may have broken this.
Apache Tomcat SingleSignonValve not being invoked
-------------------------------------------------
Key: AS7-3210
URL: https://issues.jboss.org/browse/AS7-3210
Project: Application Server 7
Issue Type: Bug
Components: Security
Reporter: Luis Barreiro
Assignee: Anil Saldhana
Despite having org.apache.catalina.authenticator.SingleSignOn valve defined in
jboss-web.xml and <sso> element present in virtual-host configuration, there is no
invocation of the valve, neither a JSESSIONIDSSO cookie is present in responses.
The valve is present in the pipeline, but the following line appears in the server log:
[org.apache.catalina.authenticator.AuthenticatorBase] (MSC service thread 1-2) No
SingleSignOn Valve is present
Testcase available at
https://github.com/barreiro/jboss-as/tree/JBQA-5281/testsuite/integration...
--
This message is automatically generated by JIRA.
If you think it was sent incorrectly, please contact your JIRA administrators:
https://issues.jboss.org/secure/ContactAdministrators!default.jspa
For more information on JIRA, see: http://www.atlassian.com/software/jira
2:57 a.m.
[
https://issues.jboss.org/browse/AS7-3210?page=com.atlassian.jira.plugin.s...
]
Remy Maucherat commented on AS7-3210:
-------------------------------------
For starters, the valve must not be defined in jboss-web.xml, since putting SSO at the
context level is obviously useless ... Similarly, context.xml does nothing.
Nothing has been updated in JBoss Web, you indeed need to add the <sso> element in
the domain configuration for the right vhost, and it will work.
Apache Tomcat SingleSignonValve not being invoked
-------------------------------------------------
Key: AS7-3210
URL: https://issues.jboss.org/browse/AS7-3210
Project: Application Server 7
Issue Type: Bug
Components: Security
Reporter: Luis Barreiro
Assignee: Anil Saldhana
Despite having org.apache.catalina.authenticator.SingleSignOn valve defined in
jboss-web.xml and <sso> element present in virtual-host configuration, there is no
invocation of the valve, neither a JSESSIONIDSSO cookie is present in responses.
The valve is present in the pipeline, but the following line appears in the server log:
[org.apache.catalina.authenticator.AuthenticatorBase] (MSC service thread 1-2) No
SingleSignOn Valve is present
Testcase available at
https://github.com/barreiro/jboss-as/tree/JBQA-5281/testsuite/integration...
--
This message is automatically generated by JIRA.
If you think it was sent incorrectly, please contact your JIRA administrators:
https://issues.jboss.org/secure/ContactAdministrators!default.jspa
For more information on JIRA, see: http://www.atlassian.com/software/jira
7:32 a.m.
[
https://issues.jboss.org/browse/AS7-3210?page=com.atlassian.jira.plugin.s...
]
Jesper Pedersen commented on AS7-3210:
--------------------------------------
Could you provide a working example? I cannot make this work in our application, despite
having the <sso> element in the virtual-host configuration. It is working in
7.0.2.Final, however.
Apache Tomcat SingleSignonValve not being invoked
-------------------------------------------------
Key: AS7-3210
URL: https://issues.jboss.org/browse/AS7-3210
Project: Application Server 7
Issue Type: Bug
Components: Security
Reporter: Luis Barreiro
Assignee: Anil Saldhana
Despite having org.apache.catalina.authenticator.SingleSignOn valve defined in
jboss-web.xml and <sso> element present in virtual-host configuration, there is no
invocation of the valve, neither a JSESSIONIDSSO cookie is present in responses.
The valve is present in the pipeline, but the following line appears in the server log:
[org.apache.catalina.authenticator.AuthenticatorBase] (MSC service thread 1-2) No
SingleSignOn Valve is present
Testcase available at
https://github.com/barreiro/jboss-as/tree/JBQA-5281/testsuite/integration...
--
This message is automatically generated by JIRA.
If you think it was sent incorrectly, please contact your JIRA administrators:
https://issues.jboss.org/secure/ContactAdministrators!default.jspa
For more information on JIRA, see: http://www.atlassian.com/software/jira
8:16 a.m.
[
https://issues.jboss.org/browse/AS7-3210?page=com.atlassian.jira.plugin.s...
]
Remy Maucherat commented on AS7-3210:
-------------------------------------
<sso reauthenticate="false"/>
There's a XML parsing glitch (because the model API behavior changed) that makes the
empty <sso/> element parsing fail, and no valve was added.
Apache Tomcat SingleSignonValve not being invoked
-------------------------------------------------
Key: AS7-3210
URL: https://issues.jboss.org/browse/AS7-3210
Project: Application Server 7
Issue Type: Bug
Components: Security
Reporter: Luis Barreiro
Assignee: Anil Saldhana
Despite having org.apache.catalina.authenticator.SingleSignOn valve defined in
jboss-web.xml and <sso> element present in virtual-host configuration, there is no
invocation of the valve, neither a JSESSIONIDSSO cookie is present in responses.
The valve is present in the pipeline, but the following line appears in the server log:
[org.apache.catalina.authenticator.AuthenticatorBase] (MSC service thread 1-2) No
SingleSignOn Valve is present
Testcase available at
https://github.com/barreiro/jboss-as/tree/JBQA-5281/testsuite/integration...
--
This message is automatically generated by JIRA.
If you think it was sent incorrectly, please contact your JIRA administrators:
https://issues.jboss.org/secure/ContactAdministrators!default.jspa
For more information on JIRA, see: http://www.atlassian.com/software/jira
2:40 a.m.
[
https://issues.jboss.org/browse/AS7-3210?page=com.atlassian.jira.plugin.s...
]
Jesper Pedersen commented on AS7-3210:
--------------------------------------
thanks - that did the trick.
Apache Tomcat SingleSignonValve not being invoked
-------------------------------------------------
Key: AS7-3210
URL: https://issues.jboss.org/browse/AS7-3210
Project: Application Server 7
Issue Type: Bug
Components: Security
Reporter: Luis Barreiro
Assignee: Anil Saldhana
Despite having org.apache.catalina.authenticator.SingleSignOn valve defined in
jboss-web.xml and <sso> element present in virtual-host configuration, there is no
invocation of the valve, neither a JSESSIONIDSSO cookie is present in responses.
The valve is present in the pipeline, but the following line appears in the server log:
[org.apache.catalina.authenticator.AuthenticatorBase] (MSC service thread 1-2) No
SingleSignOn Valve is present
Testcase available at
https://github.com/barreiro/jboss-as/tree/JBQA-5281/testsuite/integration...
--
This message is automatically generated by JIRA.
If you think it was sent incorrectly, please contact your JIRA administrators:
https://issues.jboss.org/secure/ContactAdministrators!default.jspa
For more information on JIRA, see: http://www.atlassian.com/software/jira
3:38 a.m.
[
https://issues.jboss.org/browse/AS7-3210?page=com.atlassian.jira.plugin.s...
]
Stuart Douglas resolved AS7-3210.
---------------------------------
Resolution: Done
It looks like this was fixed with
https://github.com/jbossas/jboss-as/commit/02521740b103abd9f03a6cff9d7ddb...
Apache Tomcat SingleSignonValve not being invoked
-------------------------------------------------
Key: AS7-3210
URL: https://issues.jboss.org/browse/AS7-3210
Project: Application Server 7
Issue Type: Bug
Components: Security
Reporter: Luis Barreiro
Assignee: Anil Saldhana
Despite having org.apache.catalina.authenticator.SingleSignOn valve defined in
jboss-web.xml and <sso> element present in virtual-host configuration, there is no
invocation of the valve, neither a JSESSIONIDSSO cookie is present in responses.
The valve is present in the pipeline, but the following line appears in the server log:
[org.apache.catalina.authenticator.AuthenticatorBase] (MSC service thread 1-2) No
SingleSignOn Valve is present
Testcase available at
https://github.com/barreiro/jboss-as/tree/JBQA-5281/testsuite/integration...
--
This message is automatically generated by JIRA.
If you think it was sent incorrectly, please contact your JIRA administrators:
https://issues.jboss.org/secure/ContactAdministrators!default.jspa
For more information on JIRA, see: http://www.atlassian.com/software/jira
4674
days inactive
4691
days old
6 comments
6 participants
participants (6)
-
Anil Saldhana (Commented) (JIRA) -
Jesper Pedersen (JIRA)
-
Luis Barreiro (Created) (JIRA)
-
Remy Maucherat (Commented) (JIRA)
-
Remy Maucherat (JIRA)
-
Stuart Douglas (JIRA)