[jboss-jira] [JBoss JIRA] (JGRP-2227) Use of AUTH does not result in a SecurityException, but instead nodes create separate clusters with the same name

Robert Cernak (JIRA) issues at jboss.org
Fri Jun 29 06:11:00 EDT 2018 

    [ https://issues.jboss.org/browse/JGRP-2227?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=13598789#comment-13598789 ] 

Robert Cernak commented on JGRP-2227:
-------------------------------------

I retested it with Infinispan 9.3.0Final, which contains jgroups 4.0.12, however I can still reproduce the issue.

I have 2 nodes which I am trying to connect to one Infinispan cluster. When I am joining 2nd node, when I start Infinispan cache, I see that jgroups communication channels are starting. Also I see that authenticate() method in my Token implementation is triggered. In authenticate() method I only return false to simulate authentication failure.
After method authenticate() return false, I see in logs 
2018-06-27 21:34:52,092  WARN  [jgroups-128,tra_commandsChannel,809272a0-d1b7-4e82-a8a7-98ae321c88cf-d2d68] (Log4J2LogImpl.java:96) - 809272a0-d1b7-4e82-a8a7-98ae321c88cf-d2d68: failed to validate AuthHeader (token: InfinityCommandsAuthToken) from c1a2e420-1384-4a1d-8dbd-de19127b1d86-8994a; dropping message and sending rejection message

However, I did not catch any SecurityException in my code. Also in my Intellij IDEA I have breakpoint set for any SecurityException, however nothing is thrown.

In attachment I include my jgroups configuration, my Token implementation and as well jgroups logs.
 
[^jgroupsDoesNotThrowSecurityExceptionWithJgroups4012.zip] 

> Use of AUTH does not result in a SecurityException, but instead nodes create separate clusters with the same name
> -----------------------------------------------------------------------------------------------------------------
>
>                 Key: JGRP-2227
>                 URL: https://issues.jboss.org/browse/JGRP-2227
>             Project: JGroups
>          Issue Type: Bug
>    Affects Versions: 4.0.6
>            Reporter: Robert Cernak
>            Assignee: Bela Ban
>             Fix For: 4.0.12
>
>         Attachments: jgroupsDoesNotThrowSecurityExceptionWithJgroups4012.zip, jgroupsLogs.zip
>
>
> I implemented method org.jgroups.auth.AuthToken#authenticate(AuthToken token, Message msg) in my class and its body contained only one line: return false; 
> In this way authentication should be false and I should get SecurityException.
> When I started joining of nodes together to form a cluster, instead of getting SecurityException, nodes formed 2 different clusters with the same name.
> I am sure method was evaluated, since I tried to run it also with breakpoint, which was triggered during joining process.



--
This message was sent by Atlassian JIRA
(v7.5.0#75005)

More information about the jboss-jira mailing list