On 6 Mar, Stephen Davidson wrote: > Hi Peter. > > The Application had been checking the information stored in the httpSession to see >if the user had been authenticated. Then the SLSB was checking to see if the > user was allowed to access the function requested. Btw, the current JAAS >specifications do not currently support the security archictecutre that this > application needs, so the SLSBs have to do their own. This means that there is no >Authentication for the Container to do, so I had not been using Container > Authentication/Security. This means that the only subjects/contexts available would >be from the container or application directly. I have not been generating > them in the past, as they had not been needed on the other application servers. > > Btw, the new JBoss security modules may advanced enough that I will be able to >integrate the application's security handling into JBoss (would make life much > simpler), but right now I am trying to get the current framework ported from Orion >to JBoss. And w/o having to rewrite how security is handled. >
I don't know about that. From the JMS client perspective nothing has changed. You loogin via the connection, it is on the JMS server side that JAAS are used. As far as I can see it the subject will not be magically propagated. So the bottom line is this: why do your user not get authenticated. - Have you configured jmsra to use a specific user? - Do you have special destinations for wich that user do not belong to the correct role. - Did you happen to refresh you copy in the middle of my commit - perhaps missing the auth.conf commit, which is verry important. I have tested this a million times...it would be typical if the first that happend to use it stumble om something unexpected. //Peter > Thanks, > Steve > > > > [EMAIL PROTECTED] wrote: >> On 6 Mar, Stephen Davidson wrote: >> >>>Ok, just updated, and now I get the attached stack-trace. What is happening is >that a servlet is calling an SLSB, and that SLSB is trying to pop a message on a >>>queue (as well as do some other operations). What is really disconcerting is the >fact that the Exceptions and StackTraces are NOT being propagated back to the >>>servlet... >>> >>>Suggestions as to what the unauthenticated User is all about? And how to deal with >it? >>>It may be relevant to note that the application is handling user >authentication/permissions due to some unusual security requirements (and the fact >that JAAS >>>was still in its initial Draft stage when the security model was >created/implemented). >>> >>>-Steve >>> >>><==Begin Excerpt from log===> >>>12:40:58,348 INFO [XAConnectionManager] Got a subject: null >>>12:40:58,777 ERROR [JmsXA] Unable to create ManagedConnection: >>>javax.resource.spi.CommException: javax.jms.JMSSecurityException: User: user is NOT >authenticated >>> >>> >> >> Are you using the latest CVS HEAD version of JBossMQ, I mean from just >> an hour ago? Then the complete security architecture has changed for >> JBossMQ. How are you authenticating in the jmsra stuff? >> >> //Peter >> >>>at >>> >> >org.jboss.resource.adapter.jms.JmsManagedConnection.setup(JmsManagedConnection.java:617) >> >>> at >org.jboss.resource.adapter.jms.JmsManagedConnection.<init>(JmsManagedConnection.java:162) >>> at >org.jboss.resource.adapter.jms.JmsManagedConnectionFactory.createManagedConnection(JmsManagedConnectionFactory.java:84) >>> at >org.jboss.resource.connectionmanager.ManagedConnectionPoolFactory.createObject(ManagedConnectionPoolFactory.java:97) >>> at org.jboss.pool.ObjectPool.createNewObject(ObjectPool.java:1013) >>> at org.jboss.pool.ObjectPool.getObject(ObjectPool.java:672) >>> at >org.jboss.resource.connectionmanager.XAConnectionManager.allocateConnection(XAConnectionManager.java:95) >>> at >org.jboss.resource.adapter.jms.JmsSessionFactoryImpl.createQueueSession(JmsSessionFactoryImpl.java:119) >>> at >com.hrnexus.common.shared.QConnectionManager.init(QConnectionManager.java:92) >>> at >com.hrnexus.common.shared.QConnectionManager.init(QConnectionManager.java:62) >>> at >com.hrnexus.common.shared.QConnectionManager.<init>(QConnectionManager.java:46) >>> at >com.hrnexus.common.shared.QConnectionManager.<init>(QConnectionManager.java:40) >>> at >com.hrnexus.broker.ejb.BrokerRFPService.releaseRFP(BrokerRFPService.java:286) >>> at >com.hrnexus.broker.ejb.BrokerRFPSessionEJB.releaseRFP(BrokerRFPSessionEJB.java:228) >>> at java.lang.reflect.Method.invoke(Native Method) >>> at >org.jboss.ejb.StatelessSessionContainer$ContainerInterceptor.invoke(StatelessSessionContainer.java:642) >>> at >org.jboss.ejb.plugins.StatelessSessionInstanceInterceptor.invoke(StatelessSessionInstanceInterceptor.java:77) >>> at >org.jboss.ejb.plugins.AbstractTxInterceptor.invokeNext(AbstractTxInterceptor.java:96) >>> at >org.jboss.ejb.plugins.TxInterceptorCMT.runWithTransactions(TxInterceptorCMT.java:167) >>> at org.jboss.ejb.plugins.TxInterceptorCMT.invoke(TxInterceptorCMT.java:61) >>> at >org.jboss.ejb.plugins.SecurityInterceptor.invoke(SecurityInterceptor.java:127) >>> at org.jboss.ejb.plugins.LogInterceptor.invoke(LogInterceptor.java:166) >>> at >org.jboss.ejb.StatelessSessionContainer.invoke(StatelessSessionContainer.java:308) >>> at org.jboss.ejb.Container.invoke(Container.java:668) >>> at com.sun.management.jmx.MBeanServerImpl.invoke(MBeanServerImpl.java:1555) >>> at com.sun.management.jmx.MBeanServerImpl.invoke(MBeanServerImpl.java:1523) >>> at org.jboss.invocation.local.LocalInvoker.invoke(LocalInvoker.java:92) >>> at >org.jboss.invocation.jrmp.interfaces.JRMPInvokerProxy.invoke(JRMPInvokerProxy.java:150) >>> at org.jboss.proxy.ejb.GenericProxy.invoke(GenericProxy.java:182) >>> at >org.jboss.proxy.ejb.StatelessSessionProxy.invoke(StatelessSessionProxy.java:111) >>> at $Proxy176.releaseRFP(Unknown Source) >>> at >com.hrnexus.broker.servlet.BrokerRFPServlet.releaseRFP(BrokerRFPServlet.java:341) >>> at >com.hrnexus.broker.servlet.BrokerRFPServlet.doFunction(BrokerRFPServlet.java:175) >>> at >com.hrnexus.common.servlet.HRXFeatureServlet.doPost(HRXFeatureServlet.java:178) >>> at >com.hrnexus.common.servlet.HRXFeatureServlet.doGet(HRXFeatureServlet.java:153) >>> at javax.servlet.http.HttpServlet.service(HttpServlet.java:740) >>> at javax.servlet.http.HttpServlet.service(HttpServlet.java:853) >>> at org.mortbay.jetty.servlet.ServletHolder.handle(ServletHolder.java:326) >>> at org.mortbay.jetty.servlet.ServletHandler.handle(ServletHandler.java:570) >>> at org.mortbay.http.HttpContext.handle(HttpContext.java:1354) >>> at org.mortbay.http.HttpContext.handle(HttpContext.java:1308) >>> at org.mortbay.http.HttpServer.service(HttpServer.java:743) >>> at org.jboss.jetty.Jetty.service(Jetty.java:540) >>> at org.mortbay.http.HttpConnection.service(HttpConnection.java:748) >>> at org.mortbay.http.HttpConnection.handleNext(HttpConnection.java:921) >>> at org.mortbay.http.HttpConnection.handle(HttpConnection.java:763) >>> at >org.mortbay.http.SocketListener.handleConnection(SocketListener.java:145) >>> at org.mortbay.util.ThreadedServer.handle(ThreadedServer.java:287) >>> at org.mortbay.util.ThreadPool$JobRunner.run(ThreadPool.java:715) >>> at java.lang.Thread.run(Thread.java:484) >>>12:41:03,799 ERROR [JmsXA] Unable to create ManagedConnection: >>>javax.resource.spi.CommException: javax.jms.JMSSecurityException: User: user is NOT >authenticated >>> at >org.jboss.resource.adapter.jms.JmsManagedConnection.setup(JmsManagedConnection.java:617) >>> at >org.jboss.resource.adapter.jms.JmsManagedConnection.<init>(JmsManagedConnection.java:162) >>> at >org.jboss.resource.adapter.jms.JmsManagedConnectionFactory.createManagedConnection(JmsManagedConnectionFactory.java:84) >>> at >org.jboss.resource.connectionmanager.ManagedConnectionPoolFactory.createObject(ManagedConnectionPoolFactory.java:97) >>> at org.jboss.pool.ObjectPool.createNewObject(ObjectPool.java:1013) >>> at org.jboss.pool.ObjectPool.getObject(ObjectPool.java:672) >>> at >org.jboss.resource.connectionmanager.XAConnectionManager.allocateConnection(XAConnectionManager.java:95) >>> at >org.jboss.resource.adapter.jms.JmsSessionFactoryImpl.createQueueSession(JmsSessionFactoryImpl.java:119) >>> at >com.hrnexus.common.shared.QConnectionManager.init(QConnectionManager.java:92) >>> at >com.hrnexus.common.shared.QConnectionManager.init(QConnectionManager.java:62) >>> at >com.hrnexus.common.shared.QConnectionManager.<init>(QConnectionManager.java:46) >>> at >com.hrnexus.common.shared.QConnectionManager.<init>(QConnectionManager.java:40) >>> at >com.hrnexus.broker.ejb.BrokerRFPService.releaseRFP(BrokerRFPService.java:286) >>> at >com.hrnexus.broker.ejb.BrokerRFPSessionEJB.releaseRFP(BrokerRFPSessionEJB.java:228) >>> at java.lang.reflect.Method.invoke(Native Method) >>> at >org.jboss.ejb.StatelessSessionContainer$ContainerInterceptor.invoke(StatelessSessionContainer.java:642) >>> at >org.jboss.ejb.plugins.StatelessSessionInstanceInterceptor.invoke(StatelessSessionInstanceInterceptor.java:77) >>> at >org.jboss.ejb.plugins.AbstractTxInterceptor.invokeNext(AbstractTxInterceptor.java:96) >>> at >org.jboss.ejb.plugins.TxInterceptorCMT.runWithTransactions(TxInterceptorCMT.java:167) >>> at org.jboss.ejb.plugins.TxInterceptorCMT.invoke(TxInterceptorCMT.java:61) >>> at >org.jboss.ejb.plugins.SecurityInterceptor.invoke(SecurityInterceptor.java:127) >>> at org.jboss.ejb.plugins.LogInterceptor.invoke(LogInterceptor.java:166) >>> at >org.jboss.ejb.StatelessSessionContainer.invoke(StatelessSessionContainer.java:308) >>> at org.jboss.ejb.Container.invoke(Container.java:668) >>> at com.sun.management.jmx.MBeanServerImpl.invoke(MBeanServerImpl.java:1555) >>> at com.sun.management.jmx.MBeanServerImpl.invoke(MBeanServerImpl.java:1523) >>> at org.jboss.invocation.local.LocalInvoker.invoke(LocalInvoker.java:92) >>> at >org.jboss.invocation.jrmp.interfaces.JRMPInvokerProxy.invoke(JRMPInvokerProxy.java:150) >>> at org.jboss.proxy.ejb.GenericProxy.invoke(GenericProxy.java:182) >>> at >org.jboss.proxy.ejb.StatelessSessionProxy.invoke(StatelessSessionProxy.java:111) >>> at $Proxy176.releaseRFP(Unknown Source) >>> at >com.hrnexus.broker.servlet.BrokerRFPServlet.releaseRFP(BrokerRFPServlet.java:341) >>> at >com.hrnexus.broker.servlet.BrokerRFPServlet.doFunction(BrokerRFPServlet.java:175) >>> at >com.hrnexus.common.servlet.HRXFeatureServlet.doPost(HRXFeatureServlet.java:178) >>> at >com.hrnexus.common.servlet.HRXFeatureServlet.doGet(HRXFeatureServlet.java:153) >>> at javax.servlet.http.HttpServlet.service(HttpServlet.java:740) >>> at javax.servlet.http.HttpServlet.service(HttpServlet.java:853) >>> at org.mortbay.jetty.servlet.ServletHolder.handle(ServletHolder.java:326) >>> at org.mortbay.jetty.servlet.ServletHandler.handle(ServletHandler.java:570) >>> at org.mortbay.http.HttpContext.handle(HttpContext.java:1354) >>> at org.mortbay.http.HttpContext.handle(HttpContext.java:1308) >>> at org.mortbay.http.HttpServer.service(HttpServer.java:743) >>> at org.jboss.jetty.Jetty.service(Jetty.java:540) >>> at org.mortbay.http.HttpConnection.service(HttpConnection.java:748) >>> at org.mortbay.http.HttpConnection.handleNext(HttpConnection.java:921) >>> at org.mortbay.http.HttpConnection.handle(HttpConnection.java:763) >>> at >org.mortbay.http.SocketListener.handleConnection(SocketListener.java:145) >>> at org.mortbay.util.ThreadedServer.handle(ThreadedServer.java:287) >>> at org.mortbay.util.ThreadPool$JobRunner.run(ThreadPool.java:715) >>> at java.lang.Thread.run(Thread.java:484) >>>12:41:03,964 ERROR [STDERR] java.rmi.ServerException: null >>>Embedded Exception >>>null; nested exception is: >>> javax.ejb.EJBException: null >>>Embedded Exception >>>null >>>12:41:03,965 ERROR [STDERR] javax.ejb.EJBException: null >>>Embedded Exception >>>null >>>12:41:03,966 ERROR [STDERR] <<no stack trace available>> >>>12:41:03,967 ERROR [STDERR] java.lang.NullPointerException >>>12:41:03,968 ERROR [STDERR] <<no stack trace available>> >>>12:41:03,994 INFO [STDOUT] Looking up: java:/jdbc/pool/hrnexus >>>12:41:03,996 INFO [STDOUT] ConnectionManager: TimeElapsed = 2 >>>12:41:04,099 INFO [STDOUT] Looking up: java:/jdbc/pool/test1 >>>12:41:04,101 INFO [STDOUT] ConnectionManager: TimeElapsed = 2 >>>12:41:07,715 INFO [Jetty] JSP: init >>>12:41:07,718 INFO [STDOUT] exception.toString(): java.rmi.ServerException: null >>>Embedded Exception >>>null; nested exception is: >>> javax.ejb.EJBException: null >>>Embedded Exception >>>null >>> >>> >>> >>> >>> >> > > > -- ------------------------------------------------------------ Peter Antman Technology in Media, Box 34105 100 26 Stockholm Systems Architect WWW: http://www.tim.se Email: [EMAIL PROTECTED] WWW: http://www.backsource.org Phone: +46-(0)8-506 381 11 Mobile: 070-675 3942 ------------------------------------------------------------ _______________________________________________ JBoss-user mailing list [EMAIL PROTECTED] https://lists.sourceforge.net/lists/listinfo/jboss-user
