[jboss-user] [Security & JAAS/JBoss] - JAAS and DatabaseServerLoginModule
TheThirdEye
do-not-reply at jboss.com
Wed Aug 2 20:12:51 EDT 2006
Hi,
I am trying to configure Jaas with DatabaseServerLoginModule, I have the following setup:
login-config.xml
<application-policy name="db_Sec_realm">
| <authentication>
| <login-module code="org.jboss.security.auth.spi.DatabaseServerLoginModule"
| flag="required">
| <module-option name="dsJndiName">java:/login_ds</module-option>
| <module-option name="principalsQuery">
| SELECT PASSWORD FROM USER WHERE LOWER(USERNAME) = TRIM(LOWER(?)) AND ENABLED = '1'
| </module-option>
| <module-option name="rolesQuery">
| SELECT DISTINCT RP.PERMISSION_NAME, 'Roles' FROM USER U, USER_ROLE UR, ROLE_PERMISSION RP WHERE LOWER(U.USERNAME) = TRIM(LOWER(?)) AND U.SEQ = UR.USER_SEQ AND UR.ROLE_SEQ = RP.ROLE_SEQ
| </module-option>
| <module-option name="unauthenticatedIdentity">anonymous</module-option>
| <module-option name="password-stacking">useFirstPass</module-option>
| <module-option name="hashAlgorithm">MD5</module-option>
| <module-option name="hashEncoding">base64</module-option>
| </login-module>
| </authentication>
| </application-policy>
|
web.xml
| <security-constraint>
| <web-resource-collection>
| <web-resource-name>Action servlet</web-resource-name>
| <url-pattern>*.do</url-pattern>
| </web-resource-collection>
| <web-resource-collection>
| <web-resource-name>Secure JSP Pages</web-resource-name>
| <url-pattern>/jsp/*</url-pattern>
| </web-resource-collection>
| <auth-constraint>
| <role-name>app_access</role-name>
| </auth-constraint>
| <user-data-constraint>
| <transport-guarantee>NONE</transport-guarantee>
| </user-data-constraint>
| </security-constraint>
|
| <!-- Form-based login -->
| <login-config>
| <auth-method>FORM</auth-method>
| <realm-name>db_Sec_realm</realm-name>
| <form-login-config>
| <form-login-page>/login.jsp</form-login-page>
| <form-error-page>/loginError.jsp</form-error-page>
| </form-login-config>
| </login-config>
|
| <!-- Permission for login (neede to access secure resources) -->
| <security-role>
| <role-name>app_access</role-name>
| </security-role>
|
| <session-config>
| <session-timeout>20</session-timeout>
| </session-config>
|
The problem:
When I try to login to the app using a valid username/password. I am redirected to the loginError.jsp page. I am really lost on how to debug this problem. Any pointers on the solution to this issue or possible areas of issues to investigate is greatly appriciated.
Regards,
MR
View the original post : http://www.jboss.com/index.html?module=bb&op=viewtopic&p=3962677#3962677
Reply to the post : http://www.jboss.com/index.html?module=bb&op=posting&mode=reply&p=3962677
More information about the jboss-user
mailing list