I have an installation of brms-standalone-5.3.0 server, connected to my office ldap this way:
In the login-config
<!--
BRMS Platform Security Domain
-->
<application-policy name="brms">
<authentication>
<!--
<login-module code="org.jboss.security.auth.spi.UsersRolesLoginModule" flag="required">
<module-option name="usersProperties">props/brms-users.properties</module-option>
<module-option name="rolesProperties">props/brms-roles.properties</module-option>
</login-module>
-->
<login-module code="org.jboss.security.auth.spi.LdapExtLoginModule" flag="required" >
<module-option name="java.naming.factory.initial">com.sun.jndi.ldap.LdapCtxFactory</module-option>
<module-option name="java.naming.provider.url">ldap://192.168.0.5:389</module-option>
<module-option name="bindDN">cn=admin,dc=ndeveloper,dc=com</module-option>
<module-option name="bindCredential">ndeveloper</module-option>
<module-option name="baseCtxDN">ou=People,dc=ndeveloper,dc=com</module-option>
<module-option name="baseFilter">(cn={0})</module-option>
<module-option name="rolesCtxDN">ou=Group,dc=ndeveloper,dc=com</module-option>
<module-option name="roleFilter">(member={1})</module-option>
<module-option name="roleAttributeID">gidNumber</module-option>
<module-option name="roleAttributeIsDN">false</module-option>
<module-option name="roleNameAttributeID">cn</module-option>
<module-option name="roleRecursion">-1</module-option>
<module-option name="searchScope">ONELEVEL_SCOPE</module-option>
</login-module>
</authentication>
</application-policy>
and in the components.xml
<security:identity authenticate-method="#{authenticator.authenticate}" jaas-config-name="brms"/>
I can login to th jboss-brms console, register a Guvnor repository in jboss dev studio, and add a new package with a diagram But when i log in to the brms console, search for my package and open the process file, i get this error:
2012-10-08 11:41:40,675 TRACE [org.jboss.security.auth.spi.LdapExtLoginModule] (http-127.0.0.1-8080-7) initialize
2012-10-08 11:41:40,675 TRACE [org.jboss.security.auth.spi.LdapExtLoginModule] (http-127.0.0.1-8080-7) Security domain: brms
2012-10-08 11:41:40,675 TRACE [org.jboss.security.auth.spi.LdapExtLoginModule] (http-127.0.0.1-8080-7) login
2012-10-08 11:41:40,675 TRACE [org.jboss.security.auth.spi.LdapExtLoginModule] (http-127.0.0.1-8080-7) Logging into LDAP server, env={java.naming.factory.initial=com.sun.jndi.ldap.LdapCtxFactory, roleNameAttributeID=cn, searchScope=ONELEVEL_SCOPE, java.naming.security.principal=cn=admin,dc=ndeveloper,dc=com, roleRecursion=-1, baseCtxDN=ou=People,dc=ndeveloper,dc=com, roleAttributeID=gidNumber, roleFilter=(member={1}), rolesCtxDN=ou=Group,dc=ndeveloper,dc=com, baseFilter=(cn={0}), jboss.security.security_domain=brms, java.naming.provider.url=ldap://192.168.0.5:389, roleAttributeIsDN=false, bindDN=cn=admin,dc=ndeveloper,dc=com, bindCredential=*****, java.naming.security.authentication=simple, java.naming.security.credentials=***}
2012-10-08 11:41:40,680 DEBUG [org.jboss.security.auth.spi.LdapExtLoginModule] (http-127.0.0.1-8080-7) Bad password for username=admin
2012-10-08 11:41:40,680 TRACE [org.jboss.security.auth.spi.LdapExtLoginModule] (http-127.0.0.1-8080-7) abort
2012-10-08 11:41:40,683 ERROR [org.apache.catalina.core.ContainerBase.[jboss.web].[localhost].[/jboss-brms].[OryxEditorServlet]] (http-127.0.0.1-8080-7) Servlet.service() for servlet OryxEditorServlet threw exception
java.lang.IllegalArgumentException: Unable to authenticate user.
at org.drools.guvnor.server.files.OryxEditorServlet.service(OryxEditorServlet.java:53)
at javax.servlet.http.HttpServlet.service(HttpServlet.java:717)
at org.apache.catalina.core.ApplicationFilterChain.internalDoFilter(ApplicationFilterChain.java:290)
at org.apache.catalina.core.ApplicationFilterChain.doFilter(ApplicationFilterChain.java:206)
at org.jboss.seam.web.ContextFilter$1.process(ContextFilter.java:42)
at org.jboss.seam.servlet.ContextualHttpServletRequest.run(ContextualHttpServletRequest.java:65)
at org.jboss.seam.web.ContextFilter.doFilter(ContextFilter.java:37)
at org.apache.catalina.core.ApplicationFilterChain.internalDoFilter(ApplicationFilterChain.java:235)
at org.apache.catalina.core.ApplicationFilterChain.doFilter(ApplicationFilterChain.java:206)
at org.jboss.web.tomcat.filters.ReplyHeaderFilter.doFilter(ReplyHeaderFilter.java:96)
at org.apache.catalina.core.ApplicationFilterChain.internalDoFilter(ApplicationFilterChain.java:235)
at org.apache.catalina.core.ApplicationFilterChain.doFilter(ApplicationFilterChain.java:206)
at org.apache.catalina.core.StandardWrapperValve.invoke(StandardWrapperValve.java:235)
at org.apache.catalina.core.StandardContextValve.invoke(StandardContextValve.java:191)
at org.jboss.web.tomcat.security.SecurityAssociationValve.invoke(SecurityAssociationValve.java:183)
at org.jboss.web.tomcat.security.JaccContextValve.invoke(JaccContextValve.java:95)
at org.jboss.web.tomcat.security.SecurityContextEstablishmentValve.process(SecurityContextEstablishmentValve.java:126)
at org.jboss.web.tomcat.security.SecurityContextEstablishmentValve.invoke(SecurityContextEstablishmentValve.java:70)
at org.apache.catalina.core.StandardHostValve.invoke(StandardHostValve.java:127)
at org.apache.catalina.valves.ErrorReportValve.invoke(ErrorReportValve.java:102)
at org.jboss.web.tomcat.service.jca.CachedConnectionValve.invoke(CachedConnectionValve.java:158)
at org.apache.catalina.core.StandardEngineValve.invoke(StandardEngineValve.java:109)
at org.jboss.web.tomcat.service.request.ActiveRequestResponseCacheValve.internalProcess(ActiveRequestResponseCacheValve.java:74)
at org.jboss.web.tomcat.service.request.ActiveRequestResponseCacheValve.invoke(ActiveRequestResponseCacheValve.java:47)
at org.apache.catalina.connector.CoyoteAdapter.service(CoyoteAdapter.java:330)
at org.apache.coyote.http11.Http11Processor.process(Http11Processor.java:829)
at org.apache.coyote.http11.Http11Protocol$Http11ConnectionHandler.process(Http11Protocol.java:599)
at org.apache.tomcat.util.net.JIoEndpoint$Worker.run(JIoEndpoint.java:451)
at java.lang.Thread.run(Thread.java:662)