August 2008 - jboss-user - Jboss List Archives

[Security & JAAS/JBoss] - Re: JavaServer Faces and container-managed authorization not

by poesys

As I reported in my followup post, I replaced my custom login module entirely with the standard JBoss DatabaseServerLoginModule configured with queries. That works fine and authenticates, but I'm still not seeing the roles being accepted during authorization. The roles are coming back correctly from the database, I checked the spelling and stepped through the DatabseServeLoginModule code to verify that. The role "community_user" is coming from the database query and is put into the SimplePrincipal inside the Subject, and that is the role in the security-constraint in web.xml that is authorized for the myHome.faces file. It still fails to authorize and redisplays the login page. Here is the login-config.xml code: | <authentication> |  | <login-module code="org.jboss.security.auth.spi.DatabaseServerLoginModule" flag="required"> | <module-option name="dsJndiName">java:jdbc/ReadOnlyTairTestJTDS</module-option> | <module-option name="principalsQuery">select ltrim(rtrim(password)) from Community where user_name=?</module-option> | <module-option name="rolesQuery"> | SELECT "Role", 'Roles' AS RoleGroup FROM (SELECT c.user_name, 'community_user' AS "Role" FROM Person p JOIN | Community c ON p.community_id = c.community_id UNION SELECT c.user_name, 'tair_curator' AS "Role" FROM Person p | JOIN Community c ON p.community_id = c.community_id WHERE p.is_tair_curator = 'T' UNION SELECT c.user_name, | 'external_curator' AS "Role" FROM Person p JOIN Community c ON p.community_id = c.community_id WHERE | p.is_external_curator = 'T') AS Roles WHERE user_name = ? | </module-option> | </login-module> | </authentication> | </application-policy> | As you can see, the roles are hard-coded strings, which I've verified against the web.xml constraint (see that in the previous post). So, what might be preventing JBoss security management from seeing the Subject? View the original post : http://www.jboss.com/index.html?module=bb&op=viewtopic&p=4171576#4171576 Reply to the post : http://www.jboss.com/index.html?module=bb&op=posting&mode=reply&p=4171576

17 years, 8 months

1
0
0 / 0

[Installation, Configuration & DEPLOYMENT] - Re: JBoss not recognizing deployments from Maven

by PeterJ

But doesn't your Maven build place a Messaging.jar (or perhaps Messaging-1.0-SNAPSHOT.jar) into your target directory? I would think that the maven-jboss-deploy-plugin would use that when it has to deploy somthing. Crazy question - where is your project directory located? I hope that it is not at /jboss/server/myserver/deploy/myproject. View the original post : http://www.jboss.com/index.html?module=bb&op=viewtopic&p=4171575#4171575 Reply to the post : http://www.jboss.com/index.html?module=bb&op=posting&mode=reply&p=4171575

17 years, 8 months

1
0
0 / 0

[Security & JAAS/JBoss] - Re: some questions on authentication

by ragavgomatam

Answers below :- (1) If you want to use JAAS for authentication, YES (2) Passwords are NEVER stored in request. Principal can be got from the request after successful authentication by calling anonymous wrote : request.getPrincipal(). (3)After successful authentication Principal is cached till the expiry of HttpSession. Yes no, need for extra authentication till session expires. (4) Can be used from JSP's and Servlets,. For that matter any web based client is fine this way. Not Swing. You'll need to a typical JAAS login (with CallbackHandlers and config files) for that. No .NET client cannot do a JAAS login. Hope this helps View the original post : http://www.jboss.com/index.html?module=bb&op=viewtopic&p=4171574#4171574 Reply to the post : http://www.jboss.com/index.html?module=bb&op=posting&mode=reply&p=4171574

17 years, 8 months

1
0
0 / 0

[JBoss jBPM] - Re: Human Task Example

by gllambi

"alex.guizar(a)jboss.com" wrote : | We have plans to implement the WS-HumanTask interfaces in the PVM task component. | Thank you very much for the answer! Although, some other doubts came to my mind with it :) Maybe this is a very basic question but, what's the relationship between the PVM and jbpm-bpel nowadays? If in the future I want to use WS-HumanTasks I've got to stop using jbpm-bpel and use the PVM? Thanks again! Guzman View the original post : http://www.jboss.com/index.html?module=bb&op=viewtopic&p=4171573#4171573 Reply to the post : http://www.jboss.com/index.html?module=bb&op=posting&mode=reply&p=4171573

17 years, 8 months

1
0
0 / 0

[Management, JMX/JBoss] - JBOss start up class issue

by patwary_shiva

Hi all, I want to add a startup class which should be loaded when the jboss starts up. I did some research Which says create mbean and add it jboss-service.xml file( not sure which location). I am using ear deployment. The class which I want o make the start up class resides in ear file under /lib directory. I am using jboss-4.2.1.GA. I tried to put the MBean as service in jboss-4.2.0.GA\server\servicelink\conf\ jboss-service.xml but got no class java.lang.ClassNotFoundException: No ClassLoaders found for JbossStartUp Below is the code for MBean. import org.jboss.system.ServiceMBean; public interface JbossStartUpMBean extends ServiceMBean { public void init(); public void start() throws Exception; public void stop(); public void create(); public void destroy(); public void jbossInternalLifecycle(java.lang.String s) throws java.lang.Exception; } 2.The implemenatation class: public class JbossStartUp implements MBeanRegistration, JbossStartUpMBean { private static Log logger = LogFactory.getLog(JbossStartUp.class); public JbossStartUp() { } public ObjectName preRegister(MBeanServer server, ObjectName name) throws Exception { return new ObjectName(":service=JbossStartUp"); } public void postRegister(Boolean boolean1) { } public void preDeregister() throws Exception { } public void postDeregister() { } public void create() { } public void start() throws Exception { startup(); } public String startup() throws Exception { testStartUp startup = new testStartUp(); startup.startup(); return "OK"; } public void init() { } public void stop() { } public void destroy() { } public String getName() { return null; } public int getState() { return 0; } public String getStateString() { return null; } Regards shiva View the original post : http://www.jboss.com/index.html?module=bb&op=viewtopic&p=4171572#4171572 Reply to the post : http://www.jboss.com/index.html?module=bb&op=posting&mode=reply&p=4171572

17 years, 8 months

1
0
0 / 0

start up mbean for jboss

by Sadashiv Patwary

Hi all, I want to add a startup class which should be loaded when the jboss starts up. I did some research Which says create mbean and add it jboss-service.xml file( not sure which location). I am using ear deployment. The class which I want o make the start up class resides in ear file under /lib directory. I am using jboss-4.2.1.GA. I tried to put the MBean as service in jboss-4.2.0.GA\server\servicelink\conf\ jboss-service.xml but got no class java.lang.ClassNotFoundException: No ClassLoaders found for JbossStartUp Below is the code for MBean. import org.jboss.system.ServiceMBean; public interface JbossStartUpMBean extends ServiceMBean { public void init(); public void start() throws Exception; public void stop(); public void create(); public void destroy(); public void jbossInternalLifecycle(java.lang.String s) throws java.lang.Exception; } 2.The implemenatation class: public class JbossStartUp implements MBeanRegistration, JbossStartUpMBean { private static Log logger = LogFactory.getLog(JbossStartUp.class); public JbossStartUp() { } public ObjectName preRegister(MBeanServer server, ObjectName name) throws Exception { return new ObjectName(":service=JbossStartUp"); } public void postRegister(Boolean boolean1) { } public void preDeregister() throws Exception { } public void postDeregister() { } public void create() { } public void start() throws Exception { startup(); } public String startup() throws Exception { testStartUp startup = new testStartUp(); startup.startup(); return "OK"; } public void init() { } public void stop() { } public void destroy() { } public String getName() { return null; } public int getState() { return 0; } public String getStateString() { return null; } Regards shiva

17 years, 8 months

1
0
0 / 0

[JBoss Cache: Core Edition] - CacheListener does not get event if node is not present

by mjrother

I have a distributed cache configuration with a TreeCacheListener on the second system listening for event from the first system. It is configured as INVALIDATION_ASYNC. All works fine while all components remain in memory on the second system. If a node is evicted from the second system or removed, the CacheListener no longer receives the events for changes in the first system. Is there a way I can get informed of any changes even if the nodes are not in the cache? View the original post : http://www.jboss.com/index.html?module=bb&op=viewtopic&p=4171571#4171571 Reply to the post : http://www.jboss.com/index.html?module=bb&op=posting&mode=reply&p=4171571

17 years, 8 months

1
0
0 / 0

[Security & JAAS/JBoss] - Re: LDAP is giving error : Invalid direct reference to form

by ragavgomatam

also anonymous wrote : <url-pattern>/security/*</url-pattern> appears to a problem...Make your anonymous wrote : <form-login-config> | <form-login-page>/security/login.jsp</form-login-page> | <form-error-page>/security/error.jsp</form-error-page> | </form-login-config> in a different directory than your suceess.jsp. Lets say anonymous wrote : /jaas/login.jsp and /jaas/error.jsp You should be calling (1) anonymous wrote : http://localhost:8080/yourContext/security/success.jsp. (2) This should bring you to anonymous wrote : /jaas/login.jsp (3) If your authentication passes, you should be automatically directed to anonymous wrote : /security/success.jsp Let me know if this works View the original post : http://www.jboss.com/index.html?module=bb&op=viewtopic&p=4171570#4171570 Reply to the post : http://www.jboss.com/index.html?module=bb&op=posting&mode=reply&p=4171570

17 years, 8 months

1
0
0 / 0

[Security & JAAS/JBoss] - Re: JavaServer Faces and container-managed authorization not

by ragavgomatam

I still suspect its an issue with your LoginModule. Code for accessing the database by extending AbstarctSeverLoginModule is posted in the forum..Check that out & compare yours...Are you setting the roles correctly ? View the original post : http://www.jboss.com/index.html?module=bb&op=viewtopic&p=4171567#4171567 Reply to the post : http://www.jboss.com/index.html?module=bb&op=posting&mode=reply&p=4171567

17 years, 8 months

1
0
0 / 0

[Installation, Configuration & DEPLOYMENT] - Re: JBoss not recognizing deployments from Maven

by HappySpaceInvader

"PeterJ" wrote : Doing a more careful read of your post, I would suspect that you want "Messaging" to end with the .jar extension. I also suspect that you want to know how to convince Maven to copy your Messaging.jar file to the deploy directory. For that I don't know - I use Ant to do all of my deploying, even if I build with Maven. I'm not sure that's it - that Messaging directory name is taken straight from the artifactId in the Maven pom.xml. You wouldn't normally put the .jar/.ear etc. extension in there. I think the way this is supposed to work is that it depends on the component-info.xml, but my copy of that file has been incorrectly generated because I am missing some essential setting in the maven-jboss-deploy-plugin configuration. View the original post : http://www.jboss.com/index.html?module=bb&op=viewtopic&p=4171566#4171566 Reply to the post : http://www.jboss.com/index.html?module=bb&op=posting&mode=reply&p=4171566

17 years, 8 months

1
0
0 / 0

2026

2025

2024

2023

2022

2021

2020

2019

2018

2017

2016

2015

2014

2013

2012

2011

2010

2009

2008

2007

2006

jboss-user August 2008