[jboss-jira] [JBoss JIRA] (SECURITY-628) Propagate the login exception in JBossCachedAuthenticationManager to the audit trail
Anil Saldhana (Closed) (JIRA)
jira-events at lists.jboss.org
Wed Nov 16 10:40:42 EST 2011
[ https://issues.jboss.org/browse/SECURITY-628?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel ]
Anil Saldhana closed SECURITY-628.
----------------------------------
Resolution: Rejected
> Propagate the login exception in JBossCachedAuthenticationManager to the audit trail
> ------------------------------------------------------------------------------------
>
> Key: SECURITY-628
> URL: https://issues.jboss.org/browse/SECURITY-628
> Project: PicketBox (JBoss Security and Identity Management)
> Issue Type: Feature Request
> Security Level: Public(Everyone can see)
> Components: PicketBox
> Affects Versions: PicketBox_v4_0_5
> Reporter: Anil Saldhana
> Assignee: Anil Saldhana
> Fix For: PicketBox_v4_0_6.Beta2
>
>
> Can this exception in the JBossCachedAuthenticationManager be propagated to the audit logs?
> ===========
> 11:42:56,597 ERROR [org.jboss.security.authentication.JBossCachedAuthenticationManager] (http-localhost.sadbhav-127.0.0.1-8080-1) Login failure: javax.security.auth.login.FailedLoginException: Password Incorrect/Password Required
> at org.jboss.security.auth.spi.UsernamePasswordLoginModule.login(UsernamePasswordLoginModule.java:252) [picketbox-4.0.5.Final.jar:4.0.5.Final]
> at org.jboss.security.auth.spi.UsersRolesLoginModule.login(UsersRolesLoginModule.java:154) [picketbox-4.0.5.Final.jar:4.0.5.Final]
> at sun.reflect.NativeMethodAccessorImpl.invoke0(Native Method) [:1.6.0_23]
> at sun.reflect.NativeMethodAccessorImpl.invoke(NativeMethodAccessorImpl.java:39) [:1.6.0_23]
> at sun.reflect.DelegatingMethodAccessorImpl.invoke(DelegatingMethodAccessorImpl.java:25) [:1.6.0_23]
> at java.lang.reflect.Method.invoke(Method.java:597) [:1.6.0_23]
> at javax.security.auth.login.LoginContext.invoke(LoginContext.java:769) [:1.6.0_23]
> at javax.security.auth.login.LoginContext.access$000(LoginContext.java:186) [:1.6.0_23]
> at javax.security.auth.login.LoginContext$4.run(LoginContext.java:683) [:1.6.0_23]
> at java.security.AccessController.doPrivileged(Native Method) [:1.6.0_23]
> at javax.security.auth.login.LoginContext.invokePriv(LoginContext.java:680) [:1.6.0_23]
> at javax.security.auth.login.LoginContext.login(LoginContext.java:579) [:1.6.0_23]
> at org.jboss.security.authentication.JBossCachedAuthenticationManager.defaultLogin(JBossCachedAuthenticationManager.java:411) [picketbox-infinispan-4.0.5.Final.jar:4.0.5.Final]
> at org.jboss.security.authentication.JBossCachedAuthenticationManager.authenticate(JBossCachedAuthenticationManager.java:345) [picketbox-infinispan-4.0.5.Final.jar:4.0.5.Final]
> at org.jboss.security.authentication.JBossCachedAuthenticationManager.isValid(JBossCachedAuthenticationManager.java:154) [picketbox-infinispan-4.0.5.Final.jar:4.0.5.Final]
> at org.jboss.as.web.security.JBossWebRealm.authenticate(JBossWebRealm.java:215) [jboss-as-web-7.1.0.Alpha2-SNAPSHOT.jar:7.1.0.Alpha2-SNAPSHOT]
> at org.apache.catalina.authenticator.FormAuthenticator.authenticate(FormAuthenticator.java:280) [jbossweb-7.0.2.Final.jar:7.1.0.Alpha2-SNAPSHOT]
> at org.apache.catalina.authenticator.AuthenticatorBase.invoke(AuthenticatorBase.java:372) [jbossweb-7.0.2.Final.jar:7.1.0.Alpha2-SNAPSHOT]
> at org.jboss.as.web.security.SecurityContextAssociationValve.invoke(SecurityContextAssociationValve.java:155) [jboss-as-web-7.1.0.Alpha2-SNAPSHOT.jar:7.1.0.Alpha2-SNAPSHOT]
> ======================
--
This message is automatically generated by JIRA.
If you think it was sent incorrectly, please contact your JIRA administrators: https://issues.jboss.org/secure/ContactAdministrators!default.jspa
For more information on JIRA, see: http://www.atlassian.com/software/jira
More information about the jboss-jira
mailing list