[Security & JAAS/JBoss] - 403 error with custom JAAS login Module.
by wbrown338
Greetings:
We are using Jboss 4.0.5 GA on Linux with JDK 1.4.2_10-b03
We have a custom JAAS login module that extends the org.jboss.security.auth.spi.DatabaseServerLoginModule.
This module worked with JBoss 4.0.2.
we are using the following configs.
client/auth.conf
ebizDomain
{
org.jboss.security.ClientLoginModule required;
com.gocsc.ebiz.JBossLoginModule required;
};
server/default/conf/auth.conf
ebizDomain
{
org.jboss.security.ClientLoginModule required;
com.gocsc.ebiz.JBossLoginModule required;
dsJndiName="java:/MSSQLDS"
driverName="net.sourceforge.jtds.jdbc.Driver"
connectionURL="jdbc:jtds:sqlserver://dbase/app;user=user;password=password"
keyProc="{call art_prcGetKey()}"
passwordProc="{call art_prcGetPassword(?)}"
rolesProc="{call art_prcGetRoles(?)}"
};
server/default/conf/login-config.xml
<application-policy name="ebizDomain">
<login-module code="com.gocsc.ebiz.JBossLoginModule" flag="required">
<module-option name="dsJndiName">java:/MSSQLDS</module-option>
<module-option name="driverName">net.sourceforge.jtds.jdbc.Driver</module-option>
<module-option name="connectionURL">jdbc:jtds:sqlserver://dbase/app;user=user;password=password"</module-option>
<module-option name="keyProc">{call art_prcGetKey()}</module-option>
<module-option name="passwordProc">{call art_prcGetPassword(?)}</module-option>
<module-option name="rolesProc">{call art_prcGetRoles(?)}</module-option>
</login-module>
</application-policy>
webapp war web.xml
<login-config>
<auth-method>FORM</auth-method>
<realm-name>ebizDomain</realm-name>
<form-login-config>
<form-login-page>/loginPage</form-login-page>
<form-error-page>/errorpage.jsp</form-error-page>
</form-login-config>
</login-config>
We have debugging enabled for the login and we get output from our custom module that shows the user authenticated and had a role added:
2007-02-05 10:43:51,764 DEBUG [com.gocsc.ebiz.JBossLoginModule] dsJndiName=java:/MSSQLDS
2007-02-05 10:43:51,764 DEBUG [com.gocsc.ebiz.JBossLoginModule] driverName=net.sourceforge.jtds.jdbc.Driver
2007-02-05 10:43:51,764 DEBUG [com.gocsc.ebiz.JBossLoginModule] connectionURL=connectionURL=jdbc:jtds:sqlserver://dbase/app;user=user;password=password
2007-02-05 10:43:51,764 DEBUG [com.gocsc.ebiz.JBossLoginModule] keyProc={call art_prcGetKey()}
2007-02-05 10:43:51,765 DEBUG [com.gocsc.ebiz.JBossLoginModule] passwordProc={call art_prcGetPassword(?)}
2007-02-05 10:43:51,765 DEBUG [com.gocsc.ebiz.JBossLoginModule] rolesProc={call art_prcGetRoles(?)}
2007-02-05 10:43:51,792 DEBUG [com.gocsc.ebiz.JBossLoginModule] Assign user to role A
However, instead of being redirected to the homepage of the app, we are getting the tomcat error "HTTP Status 403 - Access to the requested resource has been denied". There are no more details in the server.log and the user is prevented from going forward into the app.
Is there a change we need to make in the configuration going from 4.0.2 to 4.0.5? Thanks for your help from anyone who knows what the issue might be.
View the original post : http://www.jboss.com/index.html?module=bb&op=viewtopic&p=4011452#4011452
Reply to the post : http://www.jboss.com/index.html?module=bb&op=posting&mode=reply&p=4011452
19Â years, 2Â months
[JBoss jBPM] - Is possible that various users can do the same task parallel
by webjavier
I can create the same task to various users(ex 3 users'bert, cookie monster y grover') but when they close all task (task1 of the example)only one task submit to the next node(task2 of the example).(i tried with signal=last, lastwait, first wait,never and unsync) and nothing.
The user of the follow task only view one task (of the last who closed the task). Him should view all task submited(ex of the 3 users).
In the table JBPM_TASKINSTANCE only be had created one task Instance, when should create 3 taskinstance to the next node task2 of the example.
My code:
|
|
| <?xml version="1.0" encoding="UTF-8"?>
|
| <process-definition
| xmlns="urn:jbpm.org:jpdl-3.1" name="DefPruebaAjax">
| <swimlane name="rol1">
| <assignment expression="user(ernie)"></assignment>
| </swimlane>
| <swimlane name="rh">
| <assignment expression="group(sales)"></assignment>
| </swimlane>
| <start-state name="inicio" >
| <task name="tarea" swimlane="rol1">
| </task>
| <transition name="t1" to="task1"></transition>
| </start-state>
| <task-node name="task1" create-tasks="false" >
| <event type="node-enter">
| <action name="action1" class="com.sample.action.Asignacion">
| <grupo>JP</grupo>
| </action>
| </event>
| <task name="tarea1">
| </task>
| <transition name="t2" to="task2"></transition>
| </task-node>
| <task-node name="task2" >
| <task name="tarea2">
| <assignment expression="user(bert)"></assignment>
| </task>
| <transition name="ss2" to="end1"></transition>
| </task-node>
| <end-state name="end1"></end-state>
| </process-definition>
|
|
| public class Asignacion implements ActionHandler {
| public String grupo;
| public void execute(ExecutionContext executionContext) throws Exception {
| // TODO Auto-generated method stub
| Token token = executionContext.getToken();
| TaskMgmtInstance tmi = executionContext.getTaskMgmtInstance();
| TaskNode taskNode = (TaskNode) executionContext.getNode();
| Task task= taskNode.getTask("tarea1");
| //task.set
| tmi.createTaskInstance(task, token).setActorId("bert");
| tmi.createTaskInstance(task, token).setActorId("cookie monster");
| tmi.createTaskInstance(task, token).setActorId("grover");
|
| }
| private static final Log log = LogFactory.getLog(Asignacion.class);
| }
|
Sorry with my english....
View the original post : http://www.jboss.com/index.html?module=bb&op=viewtopic&p=4011444#4011444
Reply to the post : http://www.jboss.com/index.html?module=bb&op=posting&mode=reply&p=4011444
19Â years, 2Â months