[jboss-user] [Security & JAAS/JBoss] - Re: JBoss datasource encryption

nsayer do-not-reply at jboss.com
Tue Dec 16 22:09:03 EST 2008 

So it appears that the issue is that there is some sort of security code in or near SubjectActions that prevents our custom class from using it. Even if we actually shove our class directly into jboss-jca.jar, we still get the same error, so it's not a classloader issue.

Of course, the actual call to decrypt the code is inside commit(), which requires you to horse around with SubjectAction.

The actual decryption is quite nicely encapsulated in the decode() method.

Which is private instead of protected.

AAARRRGGGHHHH!!!!!!!!!!!!

javax.security.auth.login.LoginException: java.lang.IllegalAccessError: tried to access class org.jboss.resource.security.SubjectActions from class org.jboss.resource.security.SSNIdentityLoginModule
  |         at org.jboss.resource.security.SSNIdentityLoginModule.commit(SSNIdentityLoginModule.java:62)
  |         at sun.reflect.GeneratedMethodAccessor87.invoke(Unknown Source)
  |         at sun.reflect.DelegatingMethodAccessorImpl.invoke(DelegatingMethodAccessorImpl.java:25)
  |         at java.lang.reflect.Method.invoke(Method.java:585)
  |         at javax.security.auth.login.LoginContext.invoke(LoginContext.java:769)
  |         at javax.security.auth.login.LoginContext.access$000(LoginContext.java:186)
  |         at javax.security.auth.login.LoginContext$4.run(LoginContext.java:683)
  |         at java.security.AccessController.doPrivileged(Native Method)
  |         at javax.security.auth.login.LoginContext.invokePriv(LoginContext.java:680)
  |         at javax.security.auth.login.LoginContext.login(LoginContext.java:580)
  |         at org.jboss.security.plugins.JaasSecurityManager.defaultLogin(JaasSecurityManager.java:603)
  |         at org.jboss.security.plugins.JaasSecurityManager.authenticate(JaasSecurityManager.java:537)
  |         at org.jboss.security.plugins.JaasSecurityManager.isValid(JaasSecurityManager.java:344)
  |         at org.jboss.resource.connectionmanager.BaseConnectionManager2.getSubject(BaseConnectionManager2.java:594)




View the original post : http://www.jboss.com/index.html?module=bb&op=viewtopic&p=4197017#4197017

Reply to the post : http://www.jboss.com/index.html?module=bb&op=posting&mode=reply&p=4197017

More information about the jboss-user mailing list