[jboss-user] [Security & JAAS/JBoss] - Re: JAAS Authentication from stand alone client

[eefahs]

Hi ragav,

While starting up my java client, it will ask for a username and password  and entring the username and password, when the user enters the submit(login) button, it will create LoginContext and will call logon  and then try to call the secured ejb and then will cal a unsecured ejb for logon auditing purpose... so all the calls will trigger from the single logon button click.


	Class homeClass = getEJBHomeClass(serviceName);
  |         context = (InitialContext) getNewInitialContext(serverName);
  | 	EJBHome ejbHome = (EJBHome) context.lookup(ejbService.getJndiName()); 	
  |         obj = PortableRemoteObject.narrow(ejbHome, homeClass);
  | 	ejbObject = (EJBObject) obj.create();  	
	
	
Above is the details of the call to the server.  After login when we call the secured ejb, it will trigger the login and the login is successfull and the call to the secured ejb is also successfull. So aftre both these calls, server itself will create a jms message for audit and it will put in a queue and an MDB will pick the message and for processign this message MDB will try to call the secured EJB, then the  problem comes... it is saying that the username is null so login failed and so the call will fail.

hope the flow is clear now

what should i do now?

View the original post : http://www.jboss.com/index.html?module=bb&op=viewtopic&p=4174996#4174996

Reply to the post : http://www.jboss.com/index.html?module=bb&op=posting&mode=reply&p=4174996