I am trying to secure a web based application using JAAS but keep getting a
"java.lang.SecurityException: Authentication exception, principal=null"
whenever I try to invoke a bean method. I followed Scott's tutorial and
configured my jboss-tomcat setup accordingly.
My scenario is as follows: a SOAP client sends a username-password to the
RPCRouter (Apache SOAP) servlet hosted by Tomcat which then instantiates an
adapter that does the authentication and session management stuff. The
adapter successfully authenticates the username-password using JAAS (I see a
"User 'nick' authenticated." message) and then tries to invoke a bean method
which results in the above exception. It seems that the principal isn't
being propagated from the web container into the bean container but I can't
figure out where I'm going wrong. Does the fact that I package my beans in a
jar file (no wars or ears) have any to do with it? Any ideas most welcome.
Cheers
Nick
_______________________________________________
JBoss-user mailing list
[EMAIL PROTECTED]
http://lists.sourceforge.net/lists/listinfo/jboss-user
