Re: [JBoss-user] JAAS Based Security in JBoss

Thu, 22 Mar 2001 10:54:40 -0800 

If the auth.conf file in your jboss_dist/client directory is as you indicate then that
is the problem. That is the auth.conf file for the server and should be in the
jboss_dist/conf/default directory. You jboss_dist/client/auth.conf file should be
the default one shipped with the distribution which contains:

client 780>cat auth.conf
srp {
    // Example client auth.conf for using the SRPLoginModule
    org.jboss.srp.jaas.SRPLoginModule required
        password-stacking="useFirstPass"
        principalClassName="org.jboss.security.SimplePrincipal"
        srpServerJndiName="SRPServerInterface"
        debug=true
        ;

    // jBoss LoginModule
    org.jboss.security.ClientLoginModule  required
        password-stacking="useFirstPass"
        ;

    // Put your login modules that need jBoss here
};

other {
    // Put your login modules that work without jBoss here

    // jBoss LoginModule
    org.jboss.security.ClientLoginModule  required;

    // Put your login modules that need jBoss here
};

----- Original Message ----- 
From: "thierry birre" <[EMAIL PROTECTED]>
To: "danch" <[EMAIL PROTECTED]>; <[EMAIL PROTECTED]>
Sent: Thursday, March 22, 2001 12:44 AM
Subject: Re: [JBoss-user] JAAS Based Security in JBoss


> hi danch,
> 
> my client/auth.conf on server side is :
> simple org.jboss.security.plugins.samples.SimpleServerLoginModule required;
> };
> // The default server login module
> other {    org.jboss.security.plugins.samples.JaasServerLoginModule
> required;
> };
> session-roles {
>     org.jboss.security.plugins.samples.JaasServerLoginModule required
>         password-stacking="useFirstPass"    ;
>     org.jboss.security.plugins.samples.RolesLoginModule required    ;
> };
> 
> yes i have a jboss.xml in my .jar's META-INF
> that sets:
> <security-domain>java:/jaas/other</security-domain>
> and only for the container config that i wil use for this sample :
> <container-name>Standard Stateless SessionBean</container-name>
> 
> <role-mapping-manager>java:/jaas/session-roles</role-mapping-manager>
> 
> and i have no old files of older version in my classpath.
> all jar files loaded in the classpath came from the dist/lib or dist/lib/ext
> where dist={jboss_home}
> 
> and i have no add lines on my standardjboss.xml
>  <secure>false</secure>
> and no <security-domain>
> no <role-mapping-manager>
> and no <authentication-module>
> 
> where is the problem ?
> 
>      thierry



_______________________________________________
JBoss-user mailing list
[EMAIL PROTECTED]
http://lists.sourceforge.net/lists/listinfo/jboss-user

Reply via email to