[jboss-user] [JBossWS] - Re: Basic Authentication with WSSecureEndpoint on JBoss 4.2.
ejb3workshop
do-not-reply at jboss.com
Wed Oct 24 11:40:20 EDT 2007
I added a custom login module to debug this problem. It seems that the user and password are never passed to the login module.
| public boolean login() throws LoginException {
| logger.info("Login");
| NameCallback nameCallback = new NameCallback("User Name");
| PasswordCallback passwordCallback = new PasswordCallback("User Password", false);
| Callback[] callbacks = new Callback[2];
| callbacks[0] = nameCallback;
| callbacks[1] = passwordCallback;
| logger.info("Configured callbacks");
| try {
| logger.info("Handling callbacks");
| callbackHandler.handle(callbacks);
| logger.info("Handled callbacks");
| } catch (UnsupportedCallbackException ex) {
| ex.printStackTrace();
| } catch (IOException ex) {
| ex.printStackTrace();
| }
| String userid = "default";
| String password = "default";
| userid = nameCallback.getName();
| password = new String(passwordCallback.getPassword());
| logger.info("Processed callbacks");
| passwordCallback.clearPassword();
| logger.info("Attempt to login with :"+userid+" and "+password);
| JAASUser user = new JAASUser(1,userid);
| JAASRole role = new JAASRole("friends");
| subject.getPrincipals().add(user);
| subject.getPrincipals().add(role);
| return true;
| }
|
I am still a little confused on where I am supposed to configure which Principal implementation is a User or a Role.
I also tried adding a WebContext, but this resulted in a The request failed with HTTP status 401: Unauthorized. error without invoking the Login Module. Removing the WebContext annocation resulted in the Login Module being called, but without User / Password.
@WebContext(authMethod = "BASIC", transportGuarantee="NONE", secureWSDLAccess = false)
View the original post : http://www.jboss.com/index.html?module=bb&op=viewtopic&p=4098385#4098385
Reply to the post : http://www.jboss.com/index.html?module=bb&op=posting&mode=reply&p=4098385
More information about the jboss-user
mailing list