Hi, I am trying to validate users of my ejb server via a database using the SimpleUserManager.
I have extended SimpleUserManager and overridden the three methods and confirmed that they are being called and returning true. I have made the following changes to the descriptors. ORION-APPLICATION.XML <orion-application deployment-version="1.5.2"> <ejb-module remote="false" path="ejb.jar" /> <web-module id="web" path="web.war" /> <security-role-mapping name="administration"> <group name="administration" /> </security-role-mapping> <security-role-mapping name="productbuilder"> <group name="productbuilder" /> </security-role-mapping> <security-role-mapping name="enduser"> <group name="enduser" /> </security-role-mapping> <persistence path="persistence" /> <library path="c:\test\ejb.jar" /> <principals path="principals.xml" /> <user-manager class="com.test.rms.user.orion.UCIServerUserManager" /> <log> <file path="application.log" /> </log> <namespace-access> <read-access> <namespace-resource root=""> <security-role-mapping name="<jndi-user-role>"> <group name="administration" /> <group name="productbuilder" /> <group name="enduser" /> </security-role-mapping> </namespace-resource> </read-access> <write-access> <namespace-resource root=""> <security-role-mapping name="<jndi-user-role>"> <group name="administration" /> <group name="productbuilder" /> <group name="enduser" /> </security-role-mapping> </namespace-resource> </write-access> </namespace-access> </orion-application> PRINCIPALS.XML <principals> <groups> <group name="administration"> <permission name="administration" /> <permission name="rmi:login" /> <permission name="com.evermind.server.rmi.RMIPermission" /> </group> <group name="productbuilder"> <permission name="rmi:login" /> <permission name="com.evermind.server.rmi.RMIPermission" /> </group> <group name="enduser"> <permission name="rmi:login" /> <permission name="com.evermind.server.rmi.RMIPermission" /> </group> </groups> <users> </users> </principals> ORION-EJB-JAR.XML <orion-ejb-jar deployment-version="1.5.2" deployment-time="e93e1950d0"> <enterprise-beans> .. .. (EJB DECLARATION) .. <assembly-descriptor> <security-role-mapping name="administration"> </security-role-mapping> <security-role-mapping name="productbuilder"> </security-role-mapping> <security-role-mapping name="enduser"> </security-role-mapping> <default-method-access> <security-role-mapping name="<default-ejb-caller- role>" impliesAll="true" /> </default-method-access> </assembly-descriptor> </orion-ejb-jar> When I try to access the ejb server through an external java client using the following code : Properties prop = new Properties(); prop.put ("java.naming.factory.initial", "com.evermind.server.ApplicationClientIn itialContextFactory"); prop.put("java.naming.provider.url", "ormi://localhost/UCIServer"); prop.put("java.naming.security.principal", "adammal"); prop.put("java.naming.security.credentials", "adammal"); Context initial = new InitialContext(prop); I get the following error : java.lang.SecurityException: Invalid username/password for UCIServer (adammal) at com.evermind._cd._mu(Unknown Source) at com.evermind._cd._mu(Unknown Source) at com.evermind._cd._np(Unknown Source) at com.evermind._ce._np(Unknown Source) at com.evermind.server.rmi.RMIContext.lookup(Unknown Source) at com.evermind.server.administration.LazyResourceFinder._np (Unknown Source) at com.evermind.server.administration.LazyResourceFinder.getEJBHome (Unknown Source) at com.evermind._ck._ho(Unknown Source) at com.evermind.server.ApplicationClientInitialContextFactory.getInitialCon text(Unknown Source) at javax.naming.spi.NamingManager.getInitialContext (NamingManager.java:668) at javax.naming.InitialContext.getDefaultInitCtx (InitialContext.java:246) at javax.naming.InitialContext.init(InitialContext.java:222) at javax.naming.InitialContext.<init>(InitialContext.java:198) at com.temp.rms.uciserver.client.ListValueTypesTest.main (ListValueTypesTest.java:28) Can anyone shed any light on this for me? Thanks, Adam --------------------------------------------------------------------- mBox makes you work Smarter, not Harder, from only $0.58 per WEEK! Visit http://www.mbox.com.au