The log is below. In this case I select multi as user1.
2006-06-29 18:53:58,408 TRACE [org.jboss.web.tomcat.security.RunAsListener] jsp, runAs: null 2006-06-29 18:53:58,408 TRACE [org.jboss.web.tomcat.security.RunAsListener] jsp, runAs: null 2006-06-29 18:53:58,408 DEBUG [org.apache.catalina.core.ApplicationDispatcher] Disabling the response for futher output 2006-06-29 18:53:58,408 TRACE [org.jboss.web.tomcat.security.RunAsListener] calcservlet, runAs: null 2006-06-29 18:53:58,408 TRACE [org.jboss.web.tomcat.security.RunAsListener] calcservlet, runAs: null 2006-06-29 18:53:58,408 TRACE [org.jboss.security.SecurityAssociation] popRunAsIdentity, runAs=null 2006-06-29 18:53:58,408 TRACE [org.jboss.web.tomcat.security.SecurityAssociationValve] End invoke, callerGenericPrincipal[user1(user,)] 2006-06-29 18:53:58,408 TRACE [org.jboss.security.SecurityAssociation] clear, server=true 2006-06-29 18:54:22,876 DEBUG [org.apache.catalina.session.ManagerBase] Start expire sessions StandardManager at 1151574862876 sessioncount 1 2006-06-29 18:54:22,876 DEBUG [org.apache.catalina.session.ManagerBase] End expire sessions StandardManager processingTime 0 expired sessions: 0 2006-06-29 18:54:52,876 DEBUG [org.apache.catalina.session.ManagerBase] Start expire sessions StandardManager at 1151574892876 sessioncount 0 2006-06-29 18:54:52,876 DEBUG [org.apache.catalina.session.ManagerBase] End expire sessions StandardManager processingTime 0 expired sessions: 0 2006-06-29 18:54:52,876 DEBUG [org.apache.catalina.session.ManagerBase] Start expire sessions StandardManager at 1151574892876 sessioncount 0 2006-06-29 18:54:52,876 DEBUG [org.apache.catalina.session.ManagerBase] End expire sessions StandardManager processingTime 0 expired sessions: 0 2006-06-29 18:54:52,876 DEBUG [org.apache.catalina.session.ManagerBase] Start expire sessions StandardManager at 1151574892876 sessioncount 0 2006-06-29 18:54:52,876 DEBUG [org.apache.catalina.session.ManagerBase] End expire sessions StandardManager processingTime 0 expired sessions: 0 2006-06-29 18:55:22,875 DEBUG [org.apache.catalina.session.ManagerBase] Start expire sessions StandardManager at 1151574922875 sessioncount 1 2006-06-29 18:55:22,875 DEBUG [org.apache.catalina.session.ManagerBase] End expire sessions StandardManager processingTime 0 expired sessions: 0 2006-06-29 18:55:28,063 DEBUG [org.apache.catalina.connector.CoyoteAdapter] Requested cookie session id is 42C1AA6EFF40E2ACA51C4C43298226D5 2006-06-29 18:55:28,063 DEBUG [org.apache.catalina.authenticator.AuthenticatorBase] Security checking request GET /SecurityCheckEJB/calc.jsp 2006-06-29 18:55:28,063 DEBUG [org.apache.catalina.authenticator.AuthenticatorBase] We have cached auth type FORM for principal GenericPrincipal[user1(user,)] 2006-06-29 18:55:28,063 DEBUG [org.apache.catalina.realm.RealmBase] Checking constraint 'SecurityConstraint[User Auth]' against GET /calc.jsp --> true 2006-06-29 18:55:28,063 DEBUG [org.apache.catalina.realm.RealmBase] Checking constraint 'SecurityConstraint[User Auth]' against GET /calc.jsp --> true 2006-06-29 18:55:28,063 DEBUG [org.apache.catalina.authenticator.AuthenticatorBase] Calling hasUserDataPermission() 2006-06-29 18:55:28,063 DEBUG [org.apache.catalina.realm.RealmBase] User data constraint has no restrictions 2006-06-29 18:55:28,063 DEBUG [org.apache.catalina.authenticator.AuthenticatorBase] Calling authenticate() 2006-06-29 18:55:28,063 DEBUG [org.jboss.web.tomcat.security.FormAuthenticator] Already authenticated 'user1' 2006-06-29 18:55:28,063 DEBUG [org.apache.catalina.authenticator.AuthenticatorBase] Calling accessControl() 2006-06-29 18:55:28,063 TRACE [org.jboss.web.tomcat.security.JBossSecurityMgrRealm] Checking roles GenericPrincipal[user1(user,)] 2006-06-29 18:55:28,063 DEBUG [org.apache.catalina.realm.RealmBase] Username user1 does NOT have role admin 2006-06-29 18:55:28,063 TRACE [org.jboss.web.tomcat.security.JBossSecurityMgrRealm] No role found: admin 2006-06-29 18:55:28,063 DEBUG [org.apache.catalina.realm.RealmBase] Username user1 has role user 2006-06-29 18:55:28,063 TRACE [org.jboss.web.tomcat.security.JBossSecurityMgrRealm] No role found: user 2006-06-29 18:55:28,063 DEBUG [org.apache.catalina.authenticator.AuthenticatorBase] Successfully passed all security constraints 2006-06-29 18:55:28,063 TRACE [org.jboss.web.tomcat.security.SecurityAssociationValve] Begin invoke, callerGenericPrincipal[user1(user,)] 2006-06-29 18:55:28,063 TRACE [org.jboss.security.SecurityAssociation] pushRunAsIdentity, runAs=null 2006-06-29 18:55:28,063 TRACE [org.jboss.web.tomcat.security.SecurityAssociationValve] Restoring principal info from cache 2006-06-29 18:55:28,063 TRACE [org.jboss.security.SecurityAssociation] pushSubjectContext, subject=??????: ??: user1 ??: Roles(members:user) , [EMAIL PROTECTED],subject=17274660} 2006-06-29 18:55:28,063 TRACE [org.jboss.web.tomcat.security.RunAsListener] jsp, runAs: null 2006-06-29 18:55:28,063 TRACE [org.jboss.web.tomcat.security.RunAsListener] jsp, runAs: null 2006-06-29 18:55:28,063 TRACE [org.jboss.web.tomcat.security.RunAsListener] jsp, runAs: null 2006-06-29 18:55:28,063 TRACE [org.jboss.web.tomcat.security.RunAsListener] jsp, runAs: null 2006-06-29 18:55:28,063 TRACE [org.jboss.security.SecurityAssociation] popRunAsIdentity, runAs=null 2006-06-29 18:55:28,063 TRACE [org.jboss.web.tomcat.security.SecurityAssociationValve] End invoke, callerGenericPrincipal[user1(user,)] 2006-06-29 18:55:28,063 TRACE [org.jboss.security.SecurityAssociation] clear, server=true 2006-06-29 18:55:33,594 DEBUG [org.apache.catalina.connector.CoyoteAdapter] Requested cookie session id is 42C1AA6EFF40E2ACA51C4C43298226D5 2006-06-29 18:55:33,594 DEBUG [org.apache.catalina.authenticator.AuthenticatorBase] Security checking request GET /SecurityCheckEJB/calc 2006-06-29 18:55:33,594 DEBUG [org.apache.catalina.authenticator.AuthenticatorBase] We have cached auth type FORM for principal GenericPrincipal[user1(user,)] 2006-06-29 18:55:33,594 DEBUG [org.apache.catalina.realm.RealmBase] Checking constraint 'SecurityConstraint[User Auth]' against GET /calc --> true 2006-06-29 18:55:33,594 DEBUG [org.apache.catalina.realm.RealmBase] Checking constraint 'SecurityConstraint[User Auth]' against GET /calc --> true 2006-06-29 18:55:33,594 DEBUG [org.apache.catalina.authenticator.AuthenticatorBase] Calling hasUserDataPermission() 2006-06-29 18:55:33,594 DEBUG [org.apache.catalina.realm.RealmBase] User data constraint has no restrictions 2006-06-29 18:55:33,594 DEBUG [org.apache.catalina.authenticator.AuthenticatorBase] Calling authenticate() 2006-06-29 18:55:33,594 DEBUG [org.jboss.web.tomcat.security.FormAuthenticator] Already authenticated 'user1' 2006-06-29 18:55:33,594 DEBUG [org.apache.catalina.authenticator.AuthenticatorBase] Calling accessControl() 2006-06-29 18:55:33,594 TRACE [org.jboss.web.tomcat.security.JBossSecurityMgrRealm] Checking roles GenericPrincipal[user1(user,)] 2006-06-29 18:55:33,594 DEBUG [org.apache.catalina.realm.RealmBase] Username user1 does NOT have role admin 2006-06-29 18:55:33,594 TRACE [org.jboss.web.tomcat.security.JBossSecurityMgrRealm] No role found: admin 2006-06-29 18:55:33,594 DEBUG [org.apache.catalina.realm.RealmBase] Username user1 has role user 2006-06-29 18:55:33,594 TRACE [org.jboss.web.tomcat.security.JBossSecurityMgrRealm] No role found: user 2006-06-29 18:55:33,594 DEBUG [org.apache.catalina.authenticator.AuthenticatorBase] Successfully passed all security constraints 2006-06-29 18:55:33,594 TRACE [org.jboss.web.tomcat.security.SecurityAssociationValve] Begin invoke, callerGenericPrincipal[user1(user,)] 2006-06-29 18:55:33,594 TRACE [org.jboss.security.SecurityAssociation] pushRunAsIdentity, runAs=null 2006-06-29 18:55:33,594 TRACE [org.jboss.web.tomcat.security.SecurityAssociationValve] Restoring principal info from cache 2006-06-29 18:55:33,594 TRACE [org.jboss.security.SecurityAssociation] pushSubjectContext, subject=??????: ??: user1 ??: Roles(members:user) , [EMAIL PROTECTED],subject=17274660} 2006-06-29 18:55:33,594 TRACE [org.jboss.web.tomcat.security.RunAsListener] calcservlet, runAs: null 2006-06-29 18:55:33,594 TRACE [org.jboss.web.tomcat.security.RunAsListener] calcservlet, runAs: null 2006-06-29 18:55:33,594 TRACE [org.jboss.security.SecurityAssociation] getPrincipal, principal=user1 2006-06-29 18:55:33,594 TRACE [org.jboss.security.SecurityAssociation] pushSubjectContext, subject=null, [EMAIL PROTECTED],subject=null} 2006-06-29 18:55:33,594 INFO [STDOUT] method:plus 2006-06-29 18:55:33,594 TRACE [org.jboss.security.SecurityAssociation] getCallerPrincipal, principal=user1 2006-06-29 18:55:33,594 INFO [STDOUT] name:user1 2006-06-29 18:55:33,594 TRACE [org.jboss.security.SecurityAssociation] popSubjectContext, [EMAIL PROTECTED],subject=null} 2006-06-29 18:55:33,594 DEBUG [org.apache.catalina.core.ApplicationDispatcher] servletPath=/answer.jsp, pathInfo=null, queryString=null, name=null 2006-06-29 18:55:33,594 DEBUG [org.apache.catalina.core.ApplicationDispatcher] Path Based Forward 2006-06-29 18:55:33,594 TRACE [org.jboss.web.tomcat.security.RunAsListener] jsp, runAs: null 2006-06-29 18:55:33,594 TRACE [org.jboss.web.tomcat.security.RunAsListener] jsp, runAs: null 2006-06-29 18:55:33,594 TRACE [org.jboss.web.tomcat.security.RunAsListener] jsp, runAs: null 2006-06-29 18:55:33,594 TRACE [org.jboss.web.tomcat.security.RunAsListener] jsp, runAs: null 2006-06-29 18:55:33,594 DEBUG [org.apache.catalina.core.ApplicationDispatcher] Disabling the response for futher output 2006-06-29 18:55:33,594 TRACE [org.jboss.web.tomcat.security.RunAsListener] calcservlet, runAs: null 2006-06-29 18:55:33,594 TRACE [org.jboss.web.tomcat.security.RunAsListener] calcservlet, runAs: null 2006-06-29 18:55:33,594 TRACE [org.jboss.security.SecurityAssociation] popRunAsIdentity, runAs=null 2006-06-29 18:55:33,594 TRACE [org.jboss.web.tomcat.security.SecurityAssociationValve] End invoke, callerGenericPrincipal[user1(user,)] 2006-06-29 18:55:33,594 TRACE [org.jboss.security.SecurityAssociation] clear, server=true My application-policy is | <!-- add by Majima for test --> | <application-policy name="TestDB"> | <authentication> | <login-module code="org.jboss.security.auth.spi.DatabaseServerLoginModule" | flag = "required" > | <module-option name="dsJndiName">java:/MySecurityDS</module-option> | <module-option name="principalsQuery">select passwd from users where username=?</module-option> | <module-option name="rolesQuery">select userroles, 'Roles' from userroles where username=?</module-option> | </login-module> | </authentication> | </application-policy> | View the original post : http://www.jboss.com/index.html?module=bb&op=viewtopic&p=3954306#3954306 Reply to the post : http://www.jboss.com/index.html?module=bb&op=posting&mode=reply&p=3954306 Using Tomcat but need to do more? Need to support web services, security? Get stuff done quickly with pre-integrated technology to make your job easier Download IBM WebSphere Application Server v.1.0.1 based on Apache Geronimo http://sel.as-us.falkag.net/sel?cmd=lnk&kid=120709&bid=263057&dat=121642 _______________________________________________ JBoss-user mailing list JBoss-user@lists.sourceforge.net https://lists.sourceforge.net/lists/listinfo/jboss-user