[JBoss-user] [Security & JAAS/JBoss] - connect FORM authentication and DatabaseServerLoginModule

Tue, 20 Jun 2006 02:16:37 -0700 

I would like to use FORM authentication and DatabaseServerLoginModule 
conbination.

I put the below in login-config.xml


  |     <application-policy name="TestDB">
  |     <authentication>
  |         <login-module 
code="org.jboss.security.auth.spi.DatabaseServerLoginModule"
  |             flag = "required" >
  |             <module-option 
name="dsJndiName">java:/MySecurityDS</module-option>
  |             <module-option name="principalsQuery">select passwd from users 
where username=?</module-option>
  |             <module-option name="rolesQuery">select userroles, 'Roles' from 
userroles where username=?</module-option>
  |         </login-module>
  |     </authentication>
  |     </application-policy>
  | 

and set up DataSource propery.

I wrote the below in web.xml


  |     <security-constraint>
  |         <web-resource-collection>
  |             <web-resource-name>User Auth</web-resource-name>
  |             <url-pattern>/*</url-pattern>
  |         </web-resource-collection>
  |         <auth-constraint>
  |             <role-name>admin</role-name>
  |             <role-name>user</role-name>
  |         </auth-constraint>
  |     </security-constraint>  
  |     <login-config>
  |         <auth-method>FORM</auth-method>
  |         <form-login-config>
  |             <form-login-page>/login.jsp</form-login-page>
  |             <form-error-page>/error.jsp</form-error-page>
  |         </form-login-config>
  |     </login-config>    
  | 
  |     <security-role>
  |         <role-name>admin</role-name>
  |     </security-role>
  |     <security-role>
  |         <role-name>user</role-name>
  |     </security-role>
  |     
  | 
  | 

I tried FORM authentication there was a message from JBOSS.


  | 
  | 17:47:24,526 ERROR [UsersRolesLoginModule] Failed to load 
users/passwords/role files
  | java.io.IOException: No properties file: users.properties or defaults: 
defaultUsers.properties found
  |     at org.jboss.security.auth.spi.Util.loadProperties(Util.java:313)
  |     at 
org.jboss.security.auth.spi.UsersRolesLoginModule.loadUsers(UsersRolesLoginModule.java:186)
  |     at 
org.jboss.security.auth.spi.UsersRolesLoginModule.createUsers(UsersRolesLoginModule.java:200)
  |     at 
org.jboss.security.auth.spi.UsersRolesLoginModule.initialize(UsersRolesLoginModule.java:127)
  |     at sun.reflect.NativeMethodAccessorImpl.invoke0(Native Method)
  |     at sun.reflect.NativeMethodAccessorImpl.invoke(Unknown Source)
  |     at sun.reflect.DelegatingMethodAccessorImpl.invoke(Unknown Source)
  |     at java.lang.reflect.Method.invoke(Unknown Source)
  |     at javax.security.auth.login.LoginContext.invoke(Unknown Source)
  |     at javax.security.auth.login.LoginContext.access$000(Unknown Source)
  |     at javax.security.auth.login.LoginContext$4.run(Unknown Source)
  |     at java.security.AccessController.doPrivileged(Native Method)
  |     at javax.security.auth.login.LoginContext.invokePriv(Unknown Source)
  |     at javax.security.auth.login.LoginContext.login(Unknown Source)
  |     at 
org.jboss.security.plugins.JaasSecurityManager.defaultLogin(JaasSecurityManager.java:601)
  |     at 
org.jboss.security.plugins.JaasSecurityManager.authenticate(JaasSecurityManager.java:535)
  |     at 
org.jboss.security.plugins.JaasSecurityManager.isValid(JaasSecurityManager.java:344)
  |     at 
org.jboss.web.tomcat.security.JBossSecurityMgrRealm.authenticate(JBossSecurityMgrRealm.java:491)
  |     at 
org.apache.catalina.authenticator.FormAuthenticator.authenticate(FormAuthenticator.java:257)
  |     at 
org.apache.catalina.authenticator.AuthenticatorBase.invoke(AuthenticatorBase.java:416)
  |     at 
org.jboss.web.tomcat.security.JaccContextValve.invoke(JaccContextValve.java:74)
  |     at 
org.apache.catalina.core.StandardHostValve.invoke(StandardHostValve.java:126)
  |     at 
org.apache.catalina.valves.ErrorReportValve.invoke(ErrorReportValve.java:105)
  |     at 
org.apache.catalina.core.StandardEngineValve.invoke(StandardEngineValve.java:107)
  |     at 
org.apache.catalina.connector.CoyoteAdapter.service(CoyoteAdapter.java:148)
  |     at 
org.apache.coyote.http11.Http11Processor.process(Http11Processor.java:869)
  |     at 
org.apache.coyote.http11.Http11BaseProtocol$Http11ConnectionHandler.processConnection(Http11BaseProtocol.java:664)
  |     at 
org.apache.tomcat.util.net.PoolTcpEndpoint.processSocket(PoolTcpEndpoint.java:527)
  |     at 
org.apache.tomcat.util.net.MasterSlaveWorkerThread.run(MasterSlaveWorkerThread.java:112)
  |     at java.lang.Thread.run(Unknown Source)
  | 
  | 

It seems to use the UsersRolesLoginModule. What should I do to connect with 
DatabaseServerLoginModule?



View the original post : 
http://www.jboss.com/index.html?module=bb&op=viewtopic&p=3951881#3951881

Reply to the post : 
http://www.jboss.com/index.html?module=bb&op=posting&mode=reply&p=3951881


_______________________________________________
JBoss-user mailing list
JBoss-user@lists.sourceforge.net
https://lists.sourceforge.net/lists/listinfo/jboss-user

Reply via email to