[jboss-user] [EJB 3.0] - JAAS + EJB3.0 + Jboss unable to propaogate
Gaurav Agarwal
do-not-reply at jboss.com
Thu Jul 15 05:59:32 EDT 2010
Gaurav Agarwal [http://community.jboss.org/people/Gauravag] replied to the discussion
"JAAS + EJB3.0 + Jboss unable to propaogate"
To view the discussion, visit: http://community.jboss.org/message/552714#552714
--------------------------------------------------------------
Thanks for ur help.Finaaly i made my application complete.
The code is as folows..
Servlet where EJB is called and our authentication is done
try{
//here u need to get the logincontext called so that u get authenticated subject
LoginContext loginContext = new LoginContext("login-config file name",new PasswordCallbackHandler());
loginContext.login();
//calling ur EJB module
Properties properties = new Properties();
properties.setProperty("INITIAL_CONTEXT_FACTORY","org.jnp.interfaces.NamingContextFactory");
properties.setProperty("URL_PKG_PREFIXES","org.jboss.naming:org.jnp.interfaces");
properties.setProperty("PROVIDER_URL","jnp://localhost:1099");
Context context = new InitialContext(properties);
Object object = context.lookup("java/AttributeBI/remote");
//rest u now
loginContext.logout();
}catch(Exception exception) {
exception.printStackTrace();}
Here i have my custom login module which requires (NOTE:user defined) PricipalClass,GroupClass(for roles) ,CallbackHandlers for username and passwords and last CulomLoginModule that implements LoginModule
PasswordCallbackHandler
public class PasswordCallbackHandler implements CallbackHandler {
public PasswordCallbackHandler() {
}
public void handle(Callback[] callbacks)throws java.io.IOException, UnsupportedCallbackException {
for (int i = 0; i < callbacks.length; i++) {
if (callbacks[i] instanceof NameCallback) {
System.out.print("*"+((NameCallback)callbacks[i]).getPrompt());
((NameCallback)callbacks[i]).setName("username");
} else if (callbacks[i] instanceof PasswordCallback) {
System.out.print("*"+((PasswordCallback)callbacks[i]).getPrompt());
String pass=new String("password");
((PasswordCallback)callbacks[i]).setPassword(pass.toCharArray());
}}}}
PrincipalClass
public class UserPrincipal implements Principal,
Serializable{
private String name;
/*** Description : UserPrincipal constructor*/
public UserPrincipal(){
name="";
}//UserPrincipal()
/** * Description : Parameterize constructor * @param name */
public UserPrincipal(String name){
this.name=name;
}//UserPrincipal()
/** * Description : This method is to get Name * @return */
public String getName() {
return this.name;
}//getName()
public String toString() {
return("UserPrincipal: " + this.name);
}
public boolean equals(Object o) {
if (o == null) {
return false;
}
if (this == o) {
return true;
}
if (!(o instanceof UserPrincipal)) {
return false;
}
UserPrincipal that = (UserPrincipal) o;
if (this.getName().equals(that.getName())) {
return true;
}
return false;
}
public int hashCode() {
return this.name.hashCode();
}
}//UserPrinciple
Pricicpal Group
public class PrincipalGroup implements Group, Serializable{
private final String name;
private final Set<Principal> users = new HashSet<Principal>();
public PrincipalGroup(String name) {
this.name = name;
}
public boolean addMember(Principal user) {
return users.add(user);
}
public boolean removeMember(Principal user) {
return users.remove(user);
}
public boolean isMember(Principal member) {
return users.contains(member);
}
public Enumeration<? extends Principal> members() {
return Collections.enumeration(users);
}
public String getName() {
return name;
}
public boolean equals(Object o) {
if (o == null) {
return false;
}
if (this == o) {
return true;
}
if (!(o instanceof PrincipalGroup)) {
return false;
}
PrincipalGroup that = (PrincipalGroup) o;
if (this.getName().equals(that.getName())) {
return true;
}
return false;
}
public int hashCode() {
return this.name.hashCode();
}
}
PasswordLoginModule
public class PasswordLoginModule implements LoginModule{
public Subject subject;
public CallbackHandler callbackHandler;
public UserPrincipal user_principal;
private UserPrincipal[] roles;
public UserCredential user_credential;
Map sharedState;
Map option;
String url;
String driver;
private String username;
private String password;
boolean debug, result;
Vector<UserCredential> vector_credentials;
Vector<UserPrincipal> vector_principal;
/**
* Description : Initialization method for PasswordLoginModule
* @param subject
* @param callbackHandler
* @param sharedState
* @param options
*/
public void initialize(Subject subject,
CallbackHandler callbackHandler,
Map sharedState,
Map options) {
System.out.println("----------Initialization In Login Module----------");
this.subject=subject;
this.callbackHandler=callbackHandler;
this.sharedState=sharedState;
this.option=options;
vector_principal = new Vector();
vector_credentials = new Vector();
if(option.containsKey("debug")) {
debug = "true".equals(option.get("debug"));
}//if
}//Initialization
/**
* Description : login method of module
* @return
* @throws LoginException
*/
public boolean login() throws LoginException {
if( debug ) {
Callback[] callbacks = new Callback[2];
callbacks[0] = new NameCallback("UserName :");
callbacks[1] = new PasswordCallback("Password :", true);
try {
callbackHandler.handle(callbacks);
}catch(Exception ex) {
ex.printStackTrace();
}
username = ((NameCallback) callbacks[0]).getName();
System.out.println("user name = "+username);
password = new String(((PasswordCallback) callbacks[1]).getPassword());
System.out.println("pass = "+password);
user_principal = new UserPrincipal(username);
vector_principal.add(user_principal);
roles = new UserPrincipal[] {
new UserPrincipal("done") // for example
};
UserCredential userCredential = new UserCredential();
userCredential.setProperty("Roles","done");
vector_credentials.add(userCredential);
return true;
}//login()
/**
* Description : Commit method to set subject over logincontext
* after successful login
* @return
* @throws LoginException
*/
public boolean commit() throws LoginException {
if( debug ) {
System.out.println("------------Commit Event----------");
if ( subject.isReadOnly() ) {
throw new LoginException("Subject is Readonly");
}//if
try{
this.subject.getPrincipals().addAll(vector_principal);
PrincipalGroup group = new PrincipalGroup("Roles");
for (UserPrincipal role : roles) {
group.addMember(role);
}
subject.getPrincipals().add(group);
subject.getPublicCredentials().addAll(vector_credentials);
return true;
}catch(Exception ex){
ex.printStackTrace(System.out);
throw new LoginException(ex.getMessage());
}//catch
}
else {
return false;
}
}//commit()
/**
* Description : This method get called when login is get aborted
* @return
* @throws LoginException
*/
public boolean abort() throws LoginException {
System.out.println("-----------Abort Event--------------");
return true;
}//abort()
/**
* Decription : This method is to get logout from logincontext
* @return
* @throws LoginException
*/
public boolean logout() throws LoginException {
vector_principal.clear();
vector_credentials.clear();
return true;
}//logout()
}// PasswordLoginModule
@Stateless(name=mapped.JNDI_NAME)
@RolesAllowed("done")
public class AttributeBO implements AttributeBI {
private SessionContext sctx;
public void setMessageContext(MessageContext messageContext) {
this.messageContext = messageContext;
}
@Resource
private void setSctx(SessionContext sctx){
this.sctx = sctx;
}
@Resource
private void seteJBContext(EJBContext eJBContext) {
this.eJBContext = eJBContext;
}
private AttributeEAO attributeEAO;
@EJB
public void setAttributeEAO(AttributeEAO attributeEAO) {
this.attributeEAO = attributeEAO;
}
/**
* Description : This method is to create Attribute
* @param attribute
*/
public void createAttribute(Attribute attribute) {
Principal user_principle=sctx.getCallerPrincipal();
System.out.println("Ejb Side Principal "+user_principle.getName());
System.out.println("Ejb Side isCallerInRole "+sctx.isCallerInRole("done"));
}//createAttribute()
Now in this i want to get my credentials but there is no existing metood to receive the credentials.. Credentails may contain some propertiesas our own variable values...
my jboss-xml is as
<jboss>
<security-domain>java:/jaas/PassAuth</security-domain>
</jboss>
my config file ia as
PassAuth{
com.mqa.iam.module.PasswordLoginModule required debug="true"
};
Also my login config is like this :
<application-policy name="PassAuth">
<authentication>
<login-module code="ur own cutomloginmodule" flag="required">
<module-option name="debug">true</module-option>
</login-module>
<!--this is used to propagate the values from web to ejb this is must -->
<login-module code="org.jboss.security.ClientLoginModule" flag="required">
</login-module>
</authentication>
</application-policy>
--------------------------------------------------------------
Reply to this message by going to Community
[http://community.jboss.org/message/552714#552714]
Start a new discussion in EJB 3.0 at Community
[http://community.jboss.org/choose-container!input.jspa?contentType=1&containerType=14&container=2029]
-------------- next part --------------
An HTML attachment was scrubbed...
URL: http://lists.jboss.org/pipermail/jboss-user/attachments/20100715/d29b8920/attachment-0001.html
More information about the jboss-user
mailing list