[jboss-user] [Security & JAAS/JBoss] - Re: SecurityAssociaton.getSubject is null
AbhayaJha
do-not-reply at jboss.com
Mon May 7 08:30:06 EDT 2007
*************
***URGENT***
*************
Hi ,
Please help at your earliest. Below are the detailed description for tbe above.
We have a two ear deployed in JBoss. One ear contains all EJBs. Second Ear contains war file and internally invokes EJBs.
When my system receives (Using MDBs) messages it?s processed perfectly but when I am unable to login in web application.
I thought during migration just I can deploy my ear files but I found some class loader problems. But when I removed all the EJB client jars from the .war/web-inf/lib, It worked.
But login problem is still there, I believe this problem is due to JAAS/SSL configuration.
We have a problem with JAAS in new version of JBoss-4.0.5. The same approach is working in JBoss-3.2.3 version.
We are using customized login module and this login module is invoked properly and subject is populated
subject.getPrivateCredentials().add(userBean);
logger.info("Adding role '" + userBean.getRole() + "' to context");
userRoles.addMember(new SimplePrincipal(userBean.getRole()));
Login module returns true.
But from action class, when we call below code subject is null.
EntryUser user = EISDataHelper().getUser();
signature of getUser is as below:
public EntryUserBean getUser() throws CustodyException, RemoteException {
Subject subj = SecurityAssociation.getSubject(); //Here subject is null(in JBoss-4.0.5.GA), while same code is running in JBoss-3.2.3
if (subj == null) {
logger.debug("subject is null");
return null;
}
:
:
:
}
Configuration for login module in login-config.xml is as below :
<application-policy name="settlement">
<login-module code="com.db.dcs.model.settlements.jboss.security.LdapDBLoginModule" flag="required">
<module-option name="validatePWD">true</module-option>
</login-module>
</application-policy>
Configuration for JAAS in conf/jboss-service.xml is as below :
<!-- ==================================================================== -->
<!-- Security -->
<!-- ==================================================================== -->
jboss.security:service=XMLLoginConfig
login-config.xml
<!-- JAAS security manager and realm mapping -->
<!-- change JaasSecurityManager by JaasSecurityDomain -->
org.jboss.security.plugins.JaasSecurityDomain
<!--JaasSecurityDomain -->
jboss.security:service=JaasSecurityManager
${jboss.server.home.dir}/ssl/abc.keystore
XYZ
Configuration for SSL in deploy/jbossweb-tomcat55.sar/server.xml is as below :
Configuration for security domain in deploy/settlement-webapp.ear/settlement-webapp.war/jboss-web.xml is as below :
<jboss-web>
<security-domain>java:/jaas/settlement</security-domain>
</jboss-web>
View the original post : http://www.jboss.com/index.html?module=bb&op=viewtopic&p=4043629#4043629
Reply to the post : http://www.jboss.com/index.html?module=bb&op=posting&mode=reply&p=4043629
More information about the jboss-user
mailing list