[jboss-user] [Security & JAAS/JBoss] - Re: SecurityAssociation and ClientLoginModule authentication

jaikiran do-not-reply at jboss.com
Mon Dec 22 09:34:32 EST 2008 

SecurityClient client = SecurityClientFactory.getSecurityClient();
  | client.setSimple("anil", "mypass");
  | 

This works with JBoss-5.0 GA. However, is there a way where i can clear of the user credentials and relogin with a new password. The usecase i am trying is :

// Login with incorrect password
  | SecurityClient client = SecurityClientFactory.getSecurityClient();
  | client.setSimple("anil", "incorrectpass");
  | 
  | // access bean - which will throw exception because of invalid password
  | bean.doAuthorizedOp();
  | 
  | // Now logout the client since password was incorrect
  | client.logout();
  | 
  | // Now pass the correct password
  | client.setSimple("anil", "correctpass");
  | 
  | // try accessing the bean authorized method
  | // should have passed but fails with "Invalid User" exception
  | bean.doAuthorizedOp();
  | 

Even after logging out the client with the incorrect password, and then login with the correct password, i get a Invalid User exception:

     [java] Exception in thread "main" javax.ejb.EJBAccessException: Invalid User
  |      [java]     at org.jboss.ejb3.security.Ejb3AuthenticationInterceptorv2.invoke(Ejb3AuthenticationInterceptorv2.java:137)
  |      [java]     at org.jboss.aop.joinpoint.MethodInvocation.invokeNext(MethodInvocation.java:102)
  |      [java]     at org.jboss.ejb3.ENCPropagationInterceptor.invoke(ENCPropagationInterceptor.java:41)
  |      [java]     at org.jboss.aop.joinpoint.MethodInvocation.invokeNext(MethodInvocation.java:102)
  |      [java]     at org.jboss.ejb3.asynchronous.AsynchronousInterceptor.invoke(AsynchronousInterceptor.java:106)
  |      [java]     at org.jboss.aop.joinpoint.MethodInvocation.invokeNext(MethodInvocation.java:102)
  |      [java]     at org.jboss.ejb3.BlockContainerShutdownInterceptor.invoke(BlockContainerShutdownInterceptor.java:65)
  |      [java]     at org.jboss.aop.joinpoint.MethodInvocation.invokeNext(MethodInvocation.java:102)
  |      [java]     at org.jboss.aspects.currentinvocation.CurrentInvocationInterceptor.invoke(CurrentInvocationInterceptor.java:67)
  |      [java]     at org.jboss.aop.joinpoint.MethodInvocation.invokeNext(MethodInvocation.java:102)
  |      [java]     at org.jboss.ejb3.stateless.StatelessContainer.dynamicInvoke(StatelessContainer.java:486)
  |      [java]     at org.jboss.ejb3.session.InvokableContextClassProxyHack._dynamicInvoke(InvokableContextClassProxyHack.java:56)
  |      [java]     at org.jboss.aop.Dispatcher.invoke(Dispatcher.java:91)
  |      [java]     at org.jboss.aspects.remoting.AOPRemotingInvocationHandler.invoke(AOPRemotingInvocationHandler.java:82)
  |      [java]     at org.jboss.remoting.ServerInvoker.invoke(ServerInvoker.java:908)
  |      [java]     at org.jboss.remoting.transport.socket.ServerThread.completeInvocation(ServerThread.java:742)
  |      [java]     at org.jboss.remoting.transport.socket.ServerThread.processInvocation(ServerThread.java:695)
  |      [java]     at org.jboss.remoting.transport.socket.ServerThread.dorun(ServerThread.java:522)
  |      [java]     at org.jboss.remoting.transport.socket.ServerThread.run(ServerThread.java:230)
  |      [java]     at org.jboss.remoting.MicroRemoteClientInvoker.invoke(MicroRemoteClientInvoker.java:206)
  |      [java]     at org.jboss.remoting.Client.invoke(Client.java:1708)
  |      [java]     at org.jboss.remoting.Client.invoke(Client.java:612)
  |      [java]     at org.jboss.aspects.remoting.InvokeRemoteInterceptor.invoke(InvokeRemoteInterceptor.java:60)
  |      [java]     at org.jboss.aop.joinpoint.MethodInvocation.invokeNext(MethodInvocation.java:102)
  |      [java]     at org.jboss.aspects.tx.ClientTxPropagationInterceptor.invoke(ClientTxPropagationInterceptor.java:61)
  |      [java]     at org.jboss.aop.joinpoint.MethodInvocation.invokeNext(MethodInvocation.java:102)
  |      [java]     at org.jboss.ejb3.security.client.SecurityClientInterceptor.invoke(SecurityClientInterceptor.java:65)
  |      [java]     at org.jboss.aop.joinpoint.MethodInvocation.invokeNext(MethodInvocation.java:102)
  |      [java]     at org.jboss.ejb3.remoting.IsLocalInterceptor.invoke(IsLocalInterceptor.java:76)
  |      [java]     at org.jboss.aop.joinpoint.MethodInvocation.invokeNext(MethodInvocation.java:102)
  |      [java]     at org.jboss.aspects.remoting.PojiProxy.invoke(PojiProxy.java:62)
  |      [java]     at $Proxy3.invoke(Unknown Source)
  | 



View the original post : http://www.jboss.com/index.html?module=bb&op=viewtopic&p=4198014#4198014

Reply to the post : http://www.jboss.com/index.html?module=bb&op=posting&mode=reply&p=4198014

More information about the jboss-user mailing list