The log is below. In this case I select multi as user1.
2006-06-29 18:53:58,408 TRACE [org.jboss.web.tomcat.security.RunAsListener]
jsp, runAs: null
2006-06-29 18:53:58,408 TRACE [org.jboss.web.tomcat.security.RunAsListener]
jsp, runAs: null
2006-06-29 18:53:58,408 DEBUG [org.apache.catalina.core.ApplicationDispatcher]
Disabling the response for futher output
2006-06-29 18:53:58,408 TRACE [org.jboss.web.tomcat.security.RunAsListener]
calcservlet, runAs: null
2006-06-29 18:53:58,408 TRACE [org.jboss.web.tomcat.security.RunAsListener]
calcservlet, runAs: null
2006-06-29 18:53:58,408 TRACE [org.jboss.security.SecurityAssociation]
popRunAsIdentity, runAs=null
2006-06-29 18:53:58,408 TRACE
[org.jboss.web.tomcat.security.SecurityAssociationValve] End invoke,
callerGenericPrincipal[user1(user,)]
2006-06-29 18:53:58,408 TRACE [org.jboss.security.SecurityAssociation] clear,
server=true
2006-06-29 18:54:22,876 DEBUG [org.apache.catalina.session.ManagerBase] Start
expire sessions StandardManager at 1151574862876 sessioncount 1
2006-06-29 18:54:22,876 DEBUG [org.apache.catalina.session.ManagerBase] End
expire sessions StandardManager processingTime 0 expired sessions: 0
2006-06-29 18:54:52,876 DEBUG [org.apache.catalina.session.ManagerBase] Start
expire sessions StandardManager at 1151574892876 sessioncount 0
2006-06-29 18:54:52,876 DEBUG [org.apache.catalina.session.ManagerBase] End
expire sessions StandardManager processingTime 0 expired sessions: 0
2006-06-29 18:54:52,876 DEBUG [org.apache.catalina.session.ManagerBase] Start
expire sessions StandardManager at 1151574892876 sessioncount 0
2006-06-29 18:54:52,876 DEBUG [org.apache.catalina.session.ManagerBase] End
expire sessions StandardManager processingTime 0 expired sessions: 0
2006-06-29 18:54:52,876 DEBUG [org.apache.catalina.session.ManagerBase] Start
expire sessions StandardManager at 1151574892876 sessioncount 0
2006-06-29 18:54:52,876 DEBUG [org.apache.catalina.session.ManagerBase] End
expire sessions StandardManager processingTime 0 expired sessions: 0
2006-06-29 18:55:22,875 DEBUG [org.apache.catalina.session.ManagerBase] Start
expire sessions StandardManager at 1151574922875 sessioncount 1
2006-06-29 18:55:22,875 DEBUG [org.apache.catalina.session.ManagerBase] End
expire sessions StandardManager processingTime 0 expired sessions: 0
2006-06-29 18:55:28,063 DEBUG [org.apache.catalina.connector.CoyoteAdapter]
Requested cookie session id is 42C1AA6EFF40E2ACA51C4C43298226D5
2006-06-29 18:55:28,063 DEBUG
[org.apache.catalina.authenticator.AuthenticatorBase] Security checking request
GET /SecurityCheckEJB/calc.jsp
2006-06-29 18:55:28,063 DEBUG
[org.apache.catalina.authenticator.AuthenticatorBase] We have cached auth type
FORM for principal GenericPrincipal[user1(user,)]
2006-06-29 18:55:28,063 DEBUG [org.apache.catalina.realm.RealmBase] Checking
constraint 'SecurityConstraint[User Auth]' against GET /calc.jsp --> true
2006-06-29 18:55:28,063 DEBUG [org.apache.catalina.realm.RealmBase] Checking
constraint 'SecurityConstraint[User Auth]' against GET /calc.jsp --> true
2006-06-29 18:55:28,063 DEBUG
[org.apache.catalina.authenticator.AuthenticatorBase] Calling
hasUserDataPermission()
2006-06-29 18:55:28,063 DEBUG [org.apache.catalina.realm.RealmBase] User data
constraint has no restrictions
2006-06-29 18:55:28,063 DEBUG
[org.apache.catalina.authenticator.AuthenticatorBase] Calling authenticate()
2006-06-29 18:55:28,063 DEBUG [org.jboss.web.tomcat.security.FormAuthenticator]
Already authenticated 'user1'
2006-06-29 18:55:28,063 DEBUG
[org.apache.catalina.authenticator.AuthenticatorBase] Calling accessControl()
2006-06-29 18:55:28,063 TRACE
[org.jboss.web.tomcat.security.JBossSecurityMgrRealm] Checking roles
GenericPrincipal[user1(user,)]
2006-06-29 18:55:28,063 DEBUG [org.apache.catalina.realm.RealmBase] Username
user1 does NOT have role admin
2006-06-29 18:55:28,063 TRACE
[org.jboss.web.tomcat.security.JBossSecurityMgrRealm] No role found: admin
2006-06-29 18:55:28,063 DEBUG [org.apache.catalina.realm.RealmBase] Username
user1 has role user
2006-06-29 18:55:28,063 TRACE
[org.jboss.web.tomcat.security.JBossSecurityMgrRealm] No role found: user
2006-06-29 18:55:28,063 DEBUG
[org.apache.catalina.authenticator.AuthenticatorBase] Successfully passed all
security constraints
2006-06-29 18:55:28,063 TRACE
[org.jboss.web.tomcat.security.SecurityAssociationValve] Begin invoke,
callerGenericPrincipal[user1(user,)]
2006-06-29 18:55:28,063 TRACE [org.jboss.security.SecurityAssociation]
pushRunAsIdentity, runAs=null
2006-06-29 18:55:28,063 TRACE
[org.jboss.web.tomcat.security.SecurityAssociationValve] Restoring principal
info from cache
2006-06-29 18:55:28,063 TRACE [org.jboss.security.SecurityAssociation]
pushSubjectContext, subject=??????:
??: user1
??: Roles(members:user)
, [EMAIL PROTECTED],subject=17274660}
2006-06-29 18:55:28,063 TRACE [org.jboss.web.tomcat.security.RunAsListener]
jsp, runAs: null
2006-06-29 18:55:28,063 TRACE [org.jboss.web.tomcat.security.RunAsListener]
jsp, runAs: null
2006-06-29 18:55:28,063 TRACE [org.jboss.web.tomcat.security.RunAsListener]
jsp, runAs: null
2006-06-29 18:55:28,063 TRACE [org.jboss.web.tomcat.security.RunAsListener]
jsp, runAs: null
2006-06-29 18:55:28,063 TRACE [org.jboss.security.SecurityAssociation]
popRunAsIdentity, runAs=null
2006-06-29 18:55:28,063 TRACE
[org.jboss.web.tomcat.security.SecurityAssociationValve] End invoke,
callerGenericPrincipal[user1(user,)]
2006-06-29 18:55:28,063 TRACE [org.jboss.security.SecurityAssociation] clear,
server=true
2006-06-29 18:55:33,594 DEBUG [org.apache.catalina.connector.CoyoteAdapter]
Requested cookie session id is 42C1AA6EFF40E2ACA51C4C43298226D5
2006-06-29 18:55:33,594 DEBUG
[org.apache.catalina.authenticator.AuthenticatorBase] Security checking request
GET /SecurityCheckEJB/calc
2006-06-29 18:55:33,594 DEBUG
[org.apache.catalina.authenticator.AuthenticatorBase] We have cached auth type
FORM for principal GenericPrincipal[user1(user,)]
2006-06-29 18:55:33,594 DEBUG [org.apache.catalina.realm.RealmBase] Checking
constraint 'SecurityConstraint[User Auth]' against GET /calc --> true
2006-06-29 18:55:33,594 DEBUG [org.apache.catalina.realm.RealmBase] Checking
constraint 'SecurityConstraint[User Auth]' against GET /calc --> true
2006-06-29 18:55:33,594 DEBUG
[org.apache.catalina.authenticator.AuthenticatorBase] Calling
hasUserDataPermission()
2006-06-29 18:55:33,594 DEBUG [org.apache.catalina.realm.RealmBase] User data
constraint has no restrictions
2006-06-29 18:55:33,594 DEBUG
[org.apache.catalina.authenticator.AuthenticatorBase] Calling authenticate()
2006-06-29 18:55:33,594 DEBUG [org.jboss.web.tomcat.security.FormAuthenticator]
Already authenticated 'user1'
2006-06-29 18:55:33,594 DEBUG
[org.apache.catalina.authenticator.AuthenticatorBase] Calling accessControl()
2006-06-29 18:55:33,594 TRACE
[org.jboss.web.tomcat.security.JBossSecurityMgrRealm] Checking roles
GenericPrincipal[user1(user,)]
2006-06-29 18:55:33,594 DEBUG [org.apache.catalina.realm.RealmBase] Username
user1 does NOT have role admin
2006-06-29 18:55:33,594 TRACE
[org.jboss.web.tomcat.security.JBossSecurityMgrRealm] No role found: admin
2006-06-29 18:55:33,594 DEBUG [org.apache.catalina.realm.RealmBase] Username
user1 has role user
2006-06-29 18:55:33,594 TRACE
[org.jboss.web.tomcat.security.JBossSecurityMgrRealm] No role found: user
2006-06-29 18:55:33,594 DEBUG
[org.apache.catalina.authenticator.AuthenticatorBase] Successfully passed all
security constraints
2006-06-29 18:55:33,594 TRACE
[org.jboss.web.tomcat.security.SecurityAssociationValve] Begin invoke,
callerGenericPrincipal[user1(user,)]
2006-06-29 18:55:33,594 TRACE [org.jboss.security.SecurityAssociation]
pushRunAsIdentity, runAs=null
2006-06-29 18:55:33,594 TRACE
[org.jboss.web.tomcat.security.SecurityAssociationValve] Restoring principal
info from cache
2006-06-29 18:55:33,594 TRACE [org.jboss.security.SecurityAssociation]
pushSubjectContext, subject=??????:
??: user1
??: Roles(members:user)
, [EMAIL PROTECTED],subject=17274660}
2006-06-29 18:55:33,594 TRACE [org.jboss.web.tomcat.security.RunAsListener]
calcservlet, runAs: null
2006-06-29 18:55:33,594 TRACE [org.jboss.web.tomcat.security.RunAsListener]
calcservlet, runAs: null
2006-06-29 18:55:33,594 TRACE [org.jboss.security.SecurityAssociation]
getPrincipal, principal=user1
2006-06-29 18:55:33,594 TRACE [org.jboss.security.SecurityAssociation]
pushSubjectContext, subject=null, [EMAIL PROTECTED],subject=null}
2006-06-29 18:55:33,594 INFO [STDOUT] method:plus
2006-06-29 18:55:33,594 TRACE [org.jboss.security.SecurityAssociation]
getCallerPrincipal, principal=user1
2006-06-29 18:55:33,594 INFO [STDOUT] name:user1
2006-06-29 18:55:33,594 TRACE [org.jboss.security.SecurityAssociation]
popSubjectContext, [EMAIL PROTECTED],subject=null}
2006-06-29 18:55:33,594 DEBUG [org.apache.catalina.core.ApplicationDispatcher]
servletPath=/answer.jsp, pathInfo=null, queryString=null, name=null
2006-06-29 18:55:33,594 DEBUG [org.apache.catalina.core.ApplicationDispatcher]
Path Based Forward
2006-06-29 18:55:33,594 TRACE [org.jboss.web.tomcat.security.RunAsListener]
jsp, runAs: null
2006-06-29 18:55:33,594 TRACE [org.jboss.web.tomcat.security.RunAsListener]
jsp, runAs: null
2006-06-29 18:55:33,594 TRACE [org.jboss.web.tomcat.security.RunAsListener]
jsp, runAs: null
2006-06-29 18:55:33,594 TRACE [org.jboss.web.tomcat.security.RunAsListener]
jsp, runAs: null
2006-06-29 18:55:33,594 DEBUG [org.apache.catalina.core.ApplicationDispatcher]
Disabling the response for futher output
2006-06-29 18:55:33,594 TRACE [org.jboss.web.tomcat.security.RunAsListener]
calcservlet, runAs: null
2006-06-29 18:55:33,594 TRACE [org.jboss.web.tomcat.security.RunAsListener]
calcservlet, runAs: null
2006-06-29 18:55:33,594 TRACE [org.jboss.security.SecurityAssociation]
popRunAsIdentity, runAs=null
2006-06-29 18:55:33,594 TRACE
[org.jboss.web.tomcat.security.SecurityAssociationValve] End invoke,
callerGenericPrincipal[user1(user,)]
2006-06-29 18:55:33,594 TRACE [org.jboss.security.SecurityAssociation] clear,
server=true
My application-policy is
| <!-- add by Majima for test -->
| <application-policy name="TestDB">
| <authentication>
| <login-module
code="org.jboss.security.auth.spi.DatabaseServerLoginModule"
| flag = "required" >
| <module-option
name="dsJndiName">java:/MySecurityDS</module-option>
| <module-option name="principalsQuery">select passwd from users
where username=?</module-option>
| <module-option name="rolesQuery">select userroles, 'Roles' from
userroles where username=?</module-option>
| </login-module>
| </authentication>
| </application-policy>
|
View the original post :
http://www.jboss.com/index.html?module=bb&op=viewtopic&p=3954306#3954306
Reply to the post :
http://www.jboss.com/index.html?module=bb&op=posting&mode=reply&p=3954306
Using Tomcat but need to do more? Need to support web services, security?
Get stuff done quickly with pre-integrated technology to make your job easier
Download IBM WebSphere Application Server v.1.0.1 based on Apache Geronimo
http://sel.as-us.falkag.net/sel?cmd=lnk&kid=120709&bid=263057&dat=121642
_______________________________________________
JBoss-user mailing list
JBoss-user@lists.sourceforge.net
https://lists.sourceforge.net/lists/listinfo/jboss-user
