[jboss-user] [Security & JAAS/JBoss] - Propagating Roles from Servlet Security Context to EJB3

tnfink do-not-reply at jboss.com
Mon Jan 8 06:52:35 EST 2007 

Hi,

this is probably a stupid poblem, but I dare to ask...

I have a web application (JSF using Seam) that access an EJB-3 bean. For testing I use the UsersRolesLoginModule and put the configuration files in my JBOSS/server/default/conf directory.

I have no problems to access the authenticated user in my bean, doing this:

  | Principal callerPrincipal = _sessionContext.getCallerPrincipal();
  | 

But I cannot check my roles programmatically. If I try to execute this

  |  _sessionContext.isCallerInRole(anwendungsRolle)
  | 
I get this error:

  | 12:36:38,938 ERROR [UsersRolesLoginModule] Failed to load users/passwords/role files
  | java.io.IOException: No properties file: users.properties or defaults: defaultUsers.properties found
  |         at org.jboss.security.auth.spi.Util.loadProperties(Util.java:315)
  |         at org.jboss.security.auth.spi.UsersRolesLoginModule.loadUsers(UsersRolesLoginModule.java:186)
  | 

This is my login configuration:


  | <application-policy name = "reisekosten">
  |        <authentication>
  |           <login-module code="org.jboss.security.auth.spi.UsersRolesLoginModule"
  |              flag = "required">
  |            <module-option name="usersProperties">props/reisekosten-users.properties</module-option>
  |            <module-option name="rolesProperties">props/reisekosten-roles.properties</module-option>
  |            <module-option name="password-stacking">useFirstPass</module-option>
  |           </login-module>
  |           <login-module code = "org.jboss.security.ClientLoginModule" flag = "required"> 
  | 			<module-option name="password-stacking">useFirstPass</module-option> 
  | 		  </login-module>
  |        </authentication>
  |     </application-policy> 
  | 

This my jboss-web.xml:

  | <jboss-web>
  |   <security-domain>java:/jaas/reisekosten</security-domain>
  | </jboss-web>
  | 

And this my jboss.xml:

  | <jboss>
  |   	<security-domain>java:/jaas/reisekosten</security-domain>
  | </jboss>
  | 

Anyone any ideas?

Thanks in advance,

  Torsten

View the original post : http://www.jboss.com/index.html?module=bb&op=viewtopic&p=3998958#3998958

Reply to the post : http://www.jboss.com/index.html?module=bb&op=posting&mode=reply&p=3998958

More information about the jboss-user mailing list