March 2008 - jboss-user - Jboss List Archives

[Security & JAAS/JBoss] - NegotiateKerberos and JbossAdmin Group issue

by adrien.loyat

Hello I tried to use the NTLM authentification as described here http://wiki.jboss.org/wiki/Wiki.jsp?page=NegotiateKerberos. I'm using jboss AS 4.2.2 GA. I'm using the test case found on the wiki page. My Activ Directory server traces my authentification. But jboss (or whatever it is) gives me the roles of JBossAdmin. In the AD, I'm not part of any group named like this. Thus if in the web.xml file of the test case I change JBossAdmin by one the the group I am a member of, I cannot access the ressources (code 403). So my question is, where dose such a group come from ? anonymous wrote : | 2008-03-03 17:03:26,857 TRACE [org.jboss.security.plugins.JaasSecurityManager.SPNEGO] defaultLogin, principal=1204560206854 | 2008-03-03 17:03:26,857 TRACE [org.jboss.security.auth.login.XMLLoginConfigImpl] Begin getAppConfigurationEntry(SPNEGO), size=9 | 2008-03-03 17:03:26,857 TRACE [org.jboss.security.auth.login.XMLLoginConfigImpl] End getAppConfigurationEntry(SPNEGO), authInfo=AppConfigurationEntry[]: | [0] | LoginModule Class: org.jboss.security.auth.NegotiateLoginModule | ControlFlag: LoginModuleControlFlag : required | Options:name=defaultDomain, value=CIG.local | name=domainController, value=srv-cig.cigidf1.local | name=loadBalance, value=false | | 2008-03-03 17:03:26,858 TRACE [org.jboss.security.auth.NegotiateLoginModule] initialize, instance=@22758614 | 2008-03-03 17:03:26,858 TRACE [org.jboss.security.auth.NegotiateLoginModule] Security domain: SPNEGO | 2008-03-03 17:03:26,868 TRACE [org.jboss.security.auth.NegotiateLoginModule] commit, loginOk=true | 2008-03-03 17:03:26,868 TRACE [org.jboss.security.plugins.JaasSecurityManager.SPNEGO] defaultLogin, lc=javax.security.auth.login.LoginContext@1044daf, subject=Subject(25701656).principals=jcifs.smb.NtlmPasswordAuthentication(a)6207304(TOTO\loyat)org.jboss. | security.SimpleGroup@5440318(Roles(members:JBossAdmin(members:TOTO\loyat))) | 2008-03-03 17:03:26,869 TRACE [org.jboss.security.plugins.JaasSecurityManager.SPNEGO] updateCache, inputSubject=Subject(25701656).principals=jcifs.smb.NtlmPasswordAuthentication@6207304(TOTO\loyat) | org.jboss.security.SimpleGroup@5440318(Roles(members:JBossAdmin(members:TOTO\loyat))), cacheSubject=Subject(21533658).principals=jcifs.smb.NtlmPasswordAuthentication@6207304(TOTO\loyat) | org.jboss.security.SimpleGroup@5440318(Roles(members:JBossAdmin(members:TOTO\loyat))) | 2008-03-03 17:03:26,869 TRACE [org.jboss.security.plugins.JaasSecurityManager.SPNEGO] Inserted cache info: org.jboss.security.plugins.JaasSecurityManager$DomainInfo(a)1e30857[Subject(21533658).principals= | jcifs.smb.NtlmPasswordAuthentication@6207304(TOTO\loyat)org.jboss.security.SimpleGroup(a)5440318 | (Roles(members:JBossAdmin(members:TOTO\loyat))),credential.class=java.lang.String@12759798, | expirationTime=1204561961713] | 2008-03-03 17:03:26,869 TRACE [org.jboss.security.plugins.JaasSecurityManager.SPNEGO] End isValid, true | 2008-03-03 17:03:26,870 TRACE [org.jboss.web.tomcat.security.JBossSecurityMgrRealm] User: 1204560206854 is authenticated | 2008-03-03 17:03:26,870 TRACE [org.jboss.security.SecurityAssociation] pushSubjectContext, subject=Objet : | Principal : TOTO\loyat | Principal : Roles(members:JBossAdmin(members:TOTO\loyat)) | , sc=org.jboss.security.SecurityAssociation$SubjectContext@389922{principal=1204560206854,subject=30255134} | 2008-03-03 17:03:26,871 TRACE [org.jboss.security.plugins.JaasSecurityManager.SPNEGO] getPrincipal, cache info: org.jboss.security.plugins.JaasSecurityManager$DomainInfo@1e30857[Subject(21533658).principals=jcifs.smb.NtlmPasswordAuthentication(a)6207304 | (TOTO\loyat)org.jboss.security.SimpleGroup@5440318(Roles(members:JBossAdmin(members:TOTO\loyat))),credential.class=java.lang.String@ | 12759798,expirationTime=1204561961713] | Thanks for your answers. Adrien View the original post : http://www.jboss.com/index.html?module=bb&op=viewtopic&p=4133853#4133853 Reply to the post : http://www.jboss.com/index.html?module=bb&op=posting&mode=reply&p=4133853

18 years, 1 month

1
0
0 / 0

[JBoss jBPM] - Re: Less coding by custom nodes/jrules/etc...

by trouby

Hey, That what I was looking for, It doesn't really matter for me if the logic is done via an action or a custom node type as long as there's a possibility to create 'different' gui nodes, Where can I find the example? including the GPD customizations? and btw, is it also possible to modify the properties of the node via the gui? like customizing the parameters of the actions through the gui (properties view) instead of typing the parameters in free text? Many thanks, Asaf. View the original post : http://www.jboss.com/index.html?module=bb&op=viewtopic&p=4133851#4133851 Reply to the post : http://www.jboss.com/index.html?module=bb&op=posting&mode=reply&p=4133851

18 years, 1 month

1
0
0 / 0

[JBoss Tools (users)] - Re: cant get jboss tools 2GA to work with Ganymede build

by max.andersen＠jboss.com

Ganymede (Eclipse 3.4/WTP 3.x) is not released yet. JBoss Tools is targetted at Europe (Eclipse 3.3/WTP 2.x) Anyone who would like to get Ganymede support should check out the code and help us adjust for the public and internal API changes. Thanks, View the original post : http://www.jboss.com/index.html?module=bb&op=viewtopic&p=4133847#4133847 Reply to the post : http://www.jboss.com/index.html?module=bb&op=posting&mode=reply&p=4133847

18 years, 1 month

1
0
0 / 0

[JBoss Tools (users)] - Re: Tools Dialogs and SEAM

by max.andersen＠jboss.com

I am not exactly sure what you are seeing, but it is working at my end ,) if you still see issues with it please open up jira with these with screenshots please of what you are seeing and with text of what you actually expected to happen. Thanks View the original post : http://www.jboss.com/index.html?module=bb&op=viewtopic&p=4133845#4133845 Reply to the post : http://www.jboss.com/index.html?module=bb&op=posting&mode=reply&p=4133845

18 years, 1 month

1
0
0 / 0

[JBoss Tools (users)] - Re: Using Seam 2.0.1.CR1 with JBoss Tools 2.0.0.GA

by max.andersen＠jboss.com

yes. View the original post : http://www.jboss.com/index.html?module=bb&op=viewtopic&p=4133844#4133844 Reply to the post : http://www.jboss.com/index.html?module=bb&op=posting&mode=reply&p=4133844

18 years, 1 month

1
0
0 / 0

[JBoss Tools (users)] - Re: JBoss Tools 2.0.0GA with Eclipse 3.3 RCP problem

by max.andersen＠jboss.com

1.6.0 with Eclipse 3.1 is 2.5 years old ,) A couple of things has changed since then. One of those is that we use Eclipse WTP for the server definitions meaning you need that to be installed and that comes with Eclipse 3.3 EE version. View the original post : http://www.jboss.com/index.html?module=bb&op=viewtopic&p=4133843#4133843 Reply to the post : http://www.jboss.com/index.html?module=bb&op=posting&mode=reply&p=4133843

18 years, 1 month

1
0
0 / 0

[JBoss Tools (users)] - Re: Packaging support?

by max.andersen＠jboss.com

currently manually writing the build.xml is the best way. View the original post : http://www.jboss.com/index.html?module=bb&op=viewtopic&p=4133841#4133841 Reply to the post : http://www.jboss.com/index.html?module=bb&op=posting&mode=reply&p=4133841

18 years, 1 month

1
0
0 / 0

[JBoss Tools (users)] - Re: Getting source code for jboss plugin in eclipse

by max.andersen＠jboss.com

This should just work. What I normally do though is to edit the source paths in the dialog that shows up when it can't find the source...I don't edit the launch configuration directly. Does that work for you ? In any case report it in jira with screenshots on how you setup the launch configuration. Thanks View the original post : http://www.jboss.com/index.html?module=bb&op=viewtopic&p=4133840#4133840 Reply to the post : http://www.jboss.com/index.html?module=bb&op=posting&mode=reply&p=4133840

18 years, 1 month

1
0
0 / 0

[Installation, Configuration & DEPLOYMENT] - Re: Shutdown behavior

by FrankTheTank

Bump. Maybe some of the techies can help me out. Is there any way to set the minimum time for a shutdown? While I presume ultimately the JVM will define when the system goes down, I have noticed that I will (sometimes) actually wait a little longer then usual. Is there any way to force such a behavior? Again, thanks. View the original post : http://www.jboss.com/index.html?module=bb&op=viewtopic&p=4133838#4133838 Reply to the post : http://www.jboss.com/index.html?module=bb&op=posting&mode=reply&p=4133838

18 years, 1 month

1
0
0 / 0

[JBoss Messaging] - Re: messages stuck in queues

by martin.wickus

Hi. The clients were using the following libraries: JBM: Implementation-Version: 4.3.0.GA (build: SVNTag=JBPAPP_4_3_0_GA date=200801031548). This taken from EAP 4.3\client JBR: Implementation-Version: 4.3.0.GA (build: SVNTag=JBPAPP_4_3_0_GA date=200801031548). This taken from EAP 4.3\client View the original post : http://www.jboss.com/index.html?module=bb&op=viewtopic&p=4133836#4133836 Reply to the post : http://www.jboss.com/index.html?module=bb&op=posting&mode=reply&p=4133836

18 years, 1 month

1
0
0 / 0

2026

2025

2024

2023

2022

2021

2020

2019

2018

2017

2016

2015

2014

2013

2012

2011

2010

2009

2008

2007

2006

jboss-user March 2008