Re: [Acegisecurity-developer] Siteminder / Acegi 0.9.0 integration

Thu, 19 Jan 2006 10:13:16 -0800 

That is actually just an overly verbose DEBUG statement if you look.

If your Siteminder integration is actually working I would turn off
DEBUG SecurityEnforcementFilter in log4j.

On 1/19/06, Garvey, Paul M (GE Commercial Finance) <[EMAIL PROTECTED]> wrote:
>
>
>
> Help!,
>  I am having a hard time getting Acegi to work with Siteminder I am getting
> the following error shown below.
>  I am using appfuse 1.8.2 and deploying my app to JBoss 4.0.0
> net.sf.acegisecurity.event.authorization.AuthenticationCredentialsNotFoundEvent[source=FilterInvocation:
> URL: /mainMenu.html]
>
> 2006-01-18 17:53:18,864 DEBUG
> [net.sf.acegisecurity.intercept.web.SecurityEnforcementFilter]
> Authentication exception occurred; redirecting to authentication entry point
>
> net.sf.acegisecurity.AuthenticationCredentialsNotFoundException:
> Authentication credentials were not found in the SecurityContext
>
> at
> net.sf.acegisecurity.intercept.AbstractSecurityInterceptor.credentialsNotFound(AbstractSecurityInterceptor.java:478)
> at
> net.sf.acegisecurity.intercept.AbstractSecurityInterceptor.beforeInvocation(AbstractSecurityInterceptor.java:377)
> at
> net.sf.acegisecurity.intercept.web.FilterSecurityInterceptor.invoke(FilterSecurityInterceptor.java:105)
>  at
> net.sf.acegisecurity.intercept.web.SecurityEnforcementFilter.doFilter(SecurityEnforcementFilter.java:197)
>  at
> net.sf.acegisecurity.util.FilterChainProxy$VirtualFilterChain.doFilter(FilterChainProxy.java:303)
>  at
> net.sf.acegisecurity.wrapper.SecurityContextHolderAwareRequestFilter.doFilter(SecurityContextHolderAwareRequestFilter.java:50)
>
> at
> net.sf.acegisecurity.util.FilterChainProxy$VirtualFilterChain.doFilter(FilterChainProxy.java:303)
>  at
> net.sf.acegisecurity.context.HttpSessionContextIntegrationFilter.doFilter(HttpSessionContextIntegrationFilter.java:220)
>
> at
> net.sf.acegisecurity.util.FilterChainProxy$VirtualFilterChain.doFilter(FilterChainProxy.java:303)
>  at
> net.sf.acegisecurity.util.FilterChainProxy.doFilter(FilterChainProxy.java:173)
>  at
> net.sf.acegisecurity.util.FilterToBeanProxy.doFilter(FilterToBeanProxy.java:120)
>  at
> org.apache.catalina.core.ApplicationFilterChain.internalDoFilter(ApplicationFilterChain.java:186)
>  at
> org.apache.catalina.core.ApplicationFilterChain.doFilter(ApplicationFilterChain.java:157)
>  at
> org.jboss.web.tomcat.filters.ReplyHeaderFilter.doFilter(ReplyHeaderFilter.java:75)
>  at
> org.apache.catalina.core.ApplicationFilterChain.internalDoFilter(ApplicationFilterChain.java:186)
>  at
> org.apache.catalina.core.ApplicationFilterChain.doFilter(ApplicationFilterChain.java:157)
>  at
> org.apache.catalina.core.StandardWrapperValve.invoke(StandardWrapperValve.java:214)
>  at
> org.apache.catalina.core.StandardValveContext.invokeNext(StandardValveContext.java:104)
>  at
> org.apache.catalina.core.StandardPipeline.invoke(StandardPipeline.java:520)
>  at
> org.apache.catalina.core.StandardContextValve.invokeInternal(StandardContextValve.java:198)
>  at
> org.apache.catalina.core.StandardContextValve.invoke(StandardContextValve.java:152)
>  at
> org.apache.catalina.core.StandardValveContext.invokeNext(StandardValveContext.java:104)
>  at
> org.jboss.web.tomcat.security.CustomPrincipalValve.invoke(CustomPrincipalValve.java:44)
>  at
> org.apache.catalina.core.StandardValveContext.invokeNext(StandardValveContext.java:102)
>  at
> org.jboss.web.tomcat.security.SecurityAssociationValve.invoke(SecurityAssociationValve.java:169)
>  at
> org.apache.catalina.core.StandardValveContext.invokeNext(StandardValveContext.java:102)
>  at
> org.apache.catalina.core.StandardPipeline.invoke(StandardPipeline.java:520)
>  at
> org.apache.catalina.core.StandardHostValve.invoke(StandardHostValve.java:137)
>  at
> org.apache.catalina.core.StandardValveContext.invokeNext(StandardValveContext.java:104)
>  at
> org.apache.catalina.valves.ErrorReportValve.invoke(ErrorReportValve.java:118)
>  at
> org.apache.catalina.core.StandardValveContext.invokeNext(StandardValveContext.java:102)
>  at
> org.apache.catalina.core.StandardPipeline.invoke(StandardPipeline.java:520)
>  at
> org.apache.catalina.core.StandardEngineValve.invoke(StandardEngineValve.java:109)
>  at
> org.apache.catalina.core.StandardValveContext.invokeNext(StandardValveContext.java:104)
>  at
> org.apache.catalina.core.StandardPipeline.invoke(StandardPipeline.java:520)
>  at
> org.apache.catalina.core.ContainerBase.invoke(ContainerBase.java:929)
>  at
> org.apache.coyote.tomcat5.CoyoteAdapter.service(CoyoteAdapter.java:160)
>  at
> org.apache.jk.server.JkCoyoteHandler.invoke(JkCoyoteHandler.java:300)
>  at
> org.apache.jk.common.HandlerRequest.invoke(HandlerRequest.java:374)
>  at
> org.apache.jk.common.ChannelSocket.invoke(ChannelSocket.java:743)
>  at
> org.apache.jk.common.ChannelSocket.processConnection(ChannelSocket.java:675)
>  at
> org.apache.jk.common.SocketConnection.runIt(ChannelSocket.java:866)
>  at
> org.apache.tomcat.util.threads.ThreadPool$ControlRunnable.run(ThreadPool.java:683)
>  at java.lang.Thread.run(Thread.java:534)
> I have the following beans based on the the Sieminder/Acegi documentation:
> <bean id="filterChainProxy"
> class="net.sf.acegisecurity.util.FilterChainProxy">
>  <property name="filterInvocationDefinitionSource">
>  <value>
>  CONVERT_URL_TO_LOWERCASE_BEFORE_COMPARISON
>  PATTERN_TYPE_APACHE_ANT
> /j_security_check*=httpSessionContextIntegrationFilter,authenticationProcessingFilter
> /*.html*=httpSessionContextIntegrationFilter,remoteUserFilter,
> securityEnforcementFilter
> /*.jsp=httpSessionContextIntegrationFilter,remoteUserFilter
>  </value>
>  </property>
>  </bean>
> <bean id="filterInvocationInterceptor"
> class="net.sf.acegisecurity.intercept.web.FilterSecurityInterceptor">
>  <property name="authenticationManager"><ref
> local="authenticationManager"/></property>
>  <property name="accessDecisionManager"><ref
> local="accessDecisionManager"/></property>
>  <property name="objectDefinitionSource">
>  <value>
>  CONVERT_URL_TO_LOWERCASE_BEFORE_COMPARISON
>  PATTERN_TYPE_APACHE_ANT
>  /signup.html=admin,normaluser
>  /activeusers.html=admin
>  /clickstreams.jsp*=admin
>  /flushcache.html=admin
>  /reload.html=admin
>  /users.html*=admin
>  /viewstream.jsp*=admin
>  /mainMenu.html=admin,normaluser
>  /**/*=admin,normaluser
>  </value>
>  </property>
>  </bean>
> <bean id="authenticationManager"
> class="net.sf.acegisecurity.providers.ProviderManager">
>  <property name="providers">
>  <list>
>  <ref local="daoAuthenticationProvider"/>
>  </list>
>  </property>
>  </bean>
> <bean id="authenticationProcessingFilter"
> class="net.sf.acegisecurity.ui.webapp.SiteminderAuthenticationProcessingFilter">
>
> <property name="authenticationManager"><ref
> local="authenticationManager"/></property>
>  <property
> name="authenticationFailureUrl"><value>/login.jsp?error=true</value></property>
>  <property
> name="defaultTargetUrl"><value>/</value></property>
>  <property
> name="filterProcessesUrl"><value>/j_security_check</value></property>
>  <property
> name="siteminderUsernameHeaderKey"><value>HRID</value></property>
>  <property
> name="siteminderPasswordHeaderKey"><value>HRID</value></property>
>  </bean>
> <bean id="daoAuthenticationProvider"
> class="net.sf.acegisecurity.providers.dao.DaoAuthenticationProvider">
>  <property name="authenticationDao"><ref
> local="jdbcAuthenticationDao"/></property>
>  <property name="userCache"><ref local="userCache"/></property>
>  </bean>
>
>  <!-- Read users from database -->
>  <bean id="jdbcAuthenticationDao"
> class="net.sf.acegisecurity.providers.dao.jdbc.JdbcDaoImpl">
>  <property name="dataSource"><ref bean="dataSource"/></property>
>  <property name="usersByUsernameQuery">
>  <value>SELECT username,password,enabled FROM users WHERE username =
> ?</value>
>  </property>
>  <property name="authoritiesByUsernameQuery">
>  <value>SELECT username,role_name FROM user_role WHERE username = ?</value>
>  </property>
>  </bean>
>
>


-------------------------------------------------------
This SF.net email is sponsored by: Splunk Inc. Do you grep through log files
for problems?  Stop!  Download the new AJAX search engine that makes
searching your log files as easy as surfing the  web.  DOWNLOAD SPLUNK!
http://sel.as-us.falkag.net/sel?cmd=lnk&kid3432&bid#0486&dat1642
_______________________________________________
Home: http://acegisecurity.org
Acegisecurity-developer mailing list
Acegisecurity-developer@lists.sourceforge.net
https://lists.sourceforge.net/lists/listinfo/acegisecurity-developer

Reply via email to