[JBoss JIRA] (WFLY-3738) Secured JavaEE appclient hangs on invalid login

Friday, 15 August 2014



     [
https://issues.jboss.org/browse/WFLY-3738?page=com.atlassian.jira.plugin....
]

Wolfgang Knauf updated WFLY-3738:
---------------------------------

    Attachment: Security.ear


...
 Secured JavaEE appclient hangs on invalid login
 -----------------------------------------------

                 Key: WFLY-3738
                 URL: https://issues.jboss.org/browse/WFLY-3738
             Project: WildFly
          Issue Type: Bug
      Security Level: Public(Everyone can see) 
          Components: Application Client
    Affects Versions: 8.1.0.Final
            Reporter: Wolfgang Knauf
            Assignee: Stuart Douglas
            Priority: Minor
         Attachments: Security.ear, standalone.xml


 See attached sample EAR file: it contains a secured EJB and a JavaEE application client.
When running the JavaEE application client, you are prompted to enter a user/password,
which causes an authentication against a security domain (the prompt to enter
login/password does not work correctly, so enter username when nothing more happens, press
enter, enter password when nothing more happens and press enter ;-)). 
 If you enter valid credentials (e.g. "admin/admin" or "kunde/kunde"),
everything is fine. But if you enter e.g. an invalid password, the app client container
does not exit. It hangs at the step 
 "20:39:28,649 INFO  [org.jboss.as] (MSC service thread 1-2) JBAS015950: WildFly
8.1.0.Final "Kenny" stopped in 339ms"
 To reproduce:
 a) modify "standalone.xml":
 a.1) I need a custom realm:
             <security-realm name="KnaufRealm">
                 <authentication>
                     <jaas name="knaufsecurity"/>
                 </authentication>
             </security-realm>
 a.2) add this security domain:
                 <security-domain name="knaufsecurity"
cache-type="default">
                     <authentication>
                         <login-module code="Database"
flag="required">
                             <module-option name="dsJndiName"
value="java:jboss/datasources/ExampleDS"/>
                             <module-option name="principalsQuery"
value="SELECT PASSWORT FROM BENUTZER WHERE LOGIN=?"/>
                             <module-option name="rolesQuery"
value="SELECT R.ROLLE, 'Roles' FROM ROLLE AS R, BENUTZER_ROLLE AS BR,
BENUTZER AS B WHERE B.LOGIN=? AND BR.ROLLEN_ID = R.ID AND BR.BENUTZER_ID =
B.ID"/>
                             <module-option name="unauthenticatedIdentity"
value="gast"/>
                         </login-module>
                     </authentication>
                 </security-domain>
 a.3) point the remoting connector to my own security realm:
         <subsystem xmlns="urn:jboss:domain:remoting:2.0">
             <endpoint worker="default"/>
             <http-connector name="http-remoting-connector"
connector-ref="default" security-realm="KnaufRealm"/>
         </subsystem>
 b) deploy attached EAR file to the server
 c) run JavaEE application client: %WILDFLY_HOME%\bin\appclient.bat
c:\path_to\Security.ear#SecurityClient.jar 


--
This message was sent by Atlassian JIRA
(v6.2.6#6264)

2026

2025

2024

2023

2022

2021

2020

2019

2018

2017

2016

2015

2014

2013

2012

2011

2010

2009

2008

2007

2006