Orion Client jar files for remote application client
Hi all, Unlike many other application servers like jboss, Orion does not officially provide a list of jar files required to run remote Java Application clients. This enforces developers to include a lot of files found in the Orion root directory. Are there any plans to provide a minimum set of jar files required for remote applicacion clients ? orion-client.jar, orion-jndi.jar ... Thank you in advance Pedro
Access control without roles ?
Hi, I have a problem in which role-base access control is not flexible enough. Imagine a content server in which I want to restrict acces to each published course to a list of users. Each time a course is published I can set the list of allowed users. With htaccess I could restrict access to a directory to a list of users. But with role based control I should create a role for each course. This is not an elegant solution and force us to use proprietary APIs (RoleManager) to create roles. Is there any way in Orion to restrict access to a directory to a list of users without role-permission ? If not, Is there any Orion FileServlet (similar to JavaWebserver) ? I then could create a mediator to control access to a directory. Thank you in advance.
Cluster and security contexts.
Hi, I want to stablish a security domain or federation between two Orion servers. In this scenario one user can authenticate against server A and the connect to server B and be recognized without requiring another authentication step. Can be done with clustering ? I have successfully tried the clustering example in the howto files. But this work with unprotected resources. If you protect a resource in server A and another in server , then authentication is required. No matter if you use clustering, you must authenticate twice. Even using two protected servlets and calling the second one with the sessiojn id obtained in the first servlet´s call I achieve to access servlet 2. Can be stablished a inter-server security domain in Orion ? Thank you in advance. Pedro.
FEDERATION IN ORION
Hi, I need to stablish a federation between two servers and thus stablish a security context. For example Case 1: I authenticate against server A accesing a Web page, afterwards I connect to a protected web page in server B. I would like that my user information would be propagated to server B.This would avoid double authentication. Case 2: My application client connects and authenticates to a EJB in server A. It then connects to a EJB in server B and user information is propagated, no need for authentication again. Is this possible in Orion ? How ? Regards, Pedro
Re: PLEASE !! simple question concerning orion tags !
Hi, In this case, 1)Both connected servers in the cluster use the same user database ? 2)Is it stablished a security domain among servers ? I mean, if EJB A in orion A connects to EJB b in Orion B, security constraints will be applied and Orion B will recognize the user as a valid user ? I imagine that if question 1 is yes, then authentication should be unified. 3) Security user information is also propagated from server to server ? If JSP in Orion A connects to EJB in Orion B, will EJB B able to identify the user ? Regards and thank you. Pedro Magnus Stenman wrote: > Hi, federations are best created by the cluster tag. > add (http://www.orionserver.com/docs/rmi.xml.html for description) > > in both the server's rmi.xml and set > host="a.proper.public.hostname.for.the.machine" in the tag for > both machines. This should establish a link (them acting together). > > To then for instance use remote EJBs you set remote="true" in the ejb-module > tag in orion-application.xml for your application. > > I hope it helps. > > /Magnus stenman, the Orion team > > - Original Message - > From: "Pedro Garcia Lopez" <[EMAIL PROTECTED]> > To: "Orion-Interest" <[EMAIL PROTECTED]> > Sent: Wednesday, June 21, 2000 3:16 PM > Subject: PLEASE !! simple question concerning orion tags ! > > > Hi, > > > > I would like to know what is the use of the tag > > > username="admin" /> > > in rmi.xml > > > > Is it possible to stablish some kind of federation or connected servers > > ? > > > > > > > >
PLEASE !! simple question concerning orion tags !
Hi, I would like to know what is the use of the tag in rmi.xml Is it possible to stablish some kind of federation or connected servers ?
FEDERATION !!!
Hi again, In ORION/CONFIG/RMI.XML What is the use of the server tag ? Specifies a remote (point to point) RMI-server to communicate with. host - Hostname of the remote server. password - The password to log in with. port - Port of the remote server, default is 23791. username - The username to log in with. I do not understand what it is aimed for. What I want is to create a security domain between two Orion servers. When EJB in Orion A connects to EJB in Orion B, 1) Orion B does not know this user and 2) Tries to find it in Orion A. 3) and then authenticates. Can I do this with Orion ? Regards, Pedro
Server Feferation
Hi all, I would like to know if Orion supports server federation. In principle I would consider two models: Centralized Federation: All servers use the same Naming service.Authentication and authorization is thus centralized against this service. It is then straightforward to propagate security information between components and stablish security domains --for example between EJB in server A and EJB in server B--. In this case the MOM services (JMS) are also centralized in the unique directory. Distributed federation: Each server has its own directory service but it is bind to other directory service (JNDI federation or LDAP REFERRALS). In this case it is also possible to stablish security domains between components but , the Authorization module in server X should then follow the referral or bind to the remote directory service to look up user information. The security propagation is also guaranteed. I have seen that rmi.xml you can include references to other servers but I am not sure if this is more aimed for clustering. Do you have any information concerning this point ? Regards,
Orion UserManager
Hi, How can I get the members of a group using Orion APIs ? Regards
CMP Orion bug
Hi, I think I have found a bug with CMP in Orion. The error is simple and you can test it. I have a Entity Bean with a field called users--type Collection--. My entity have simple methos like addUser, removeUser, getUsers. Without specifying public static final Class users_type = java.lang.String.class; in my EJB all works nice. I have a test application that works without problems. If I specify this line ( public static final Class users_type = java.lang.String.class;) the test applications fails. --- System/communication error: java.lang.ArrayIndexOutOfBoundsException; nested exc eption is: java.lang.ArrayIndexOutOfBoundsException -- and the client code: --- Place thePlace = (Place)home.findByPrimaryKey("pedro"); thePlace.join(); String users[] = thePlace.getUsers(); for (int i =0;i
Re: Two Instances of orion
Hi, In orion/config/default-web-app.xml change the web port number. If you want to use EJBs you must also change the rmi port number in rmi.xml, and of course change the url in your application client's jndi.properties file. Regards, About shutdown I cannot help, I use CTRL+C ;-) Hashim Merchant wrote: > I have one instance of orion running on the default port 80 now I want > to run another instance of orion on another port (say 88) by using java -jar > orion.jar also i should be able to shut this instance down using java -jar > shutdown.jar and all this time the previous instance of orion should be > on.Is there some way to do this im pretty new to orion...if any of u guys > have anyideas please help me out.Like is there something i can put in the > classpath java -jar orion.jar port="88" > Thank you for your time > > Hashim Merchant > > > Name: winmail.dat >winmail.datType: application/ms-tnef > Encoding: base64
EJBUserManager
Hi, I solved my last question (HttpServletRequest.getPrincipal). Another question: First of all, I find very clean and elegant the UserManager idea in Orion. It is surprising how other commercial servers like iPlanet do not provide such facility. In fact we plan to develop ouw own LDAPUserManager implementing Orion interface. The problem is that I find several holes in the UserManager API. The most important is: How can you know the members of a specific group ? --getUsers(groupName). Or how can you list all existing groups ? --getGroups() I do not understand why this simple functionality is not included. Anybody can explain this ?
getPrincipal
Hi, In a J2EE aplication, when servlet or a JSP need to know the user identity, Whet method should they call ? I have not found that method in the API. Nevertheless, in the EJB API you can use EJBContext getPrincipal to obtain caller´s identity. A trick would be that the servlet connect to a EJB that returns the caller identity to the Servlet ,but I do not like this turn around method. Do you have any solution ?
Maintaining state: EJB question
Hi, In order to maintain state for multiple clients the EJB specification recommends the use of Entity Beans. So you need to use a database even if you want to maintain state that is not persistent. I have found a solution that I do not know if it is correct: I use a Session Bean. I the ejbCreateMethod of the Session BEan I do this: public void ejbCreate(String name) { this.name = name; users = new HashMap(); try{ EJBObject ref = context.getEJBObject(); Context initial = new InitialContext(); initial.bind(name,ref); }catch (javax.naming.NamingException ex){ ex.printStackTrace(); } } and then, applicatrion clients can use JNDI to connect to the Session Bean reference. You can thus maintains state for multiple clients using a Session Bean. Is this a bad trick ? Some guy told me that this is dangerous due to activation and passivation, but I think that documentation says that getEjbObject gives you a handle that persists acrosts passivations states. Let me know your comments. In CORBA the Naming service is also used for locating references to specific instance of remote objects. In the EJB model I have seen that JNDI is used for locaintg factory objects (Home). Is this approach correct ? can JNDI also be used for locating specific instances ? Thank you in advance.
Re: AW: EJB state question & Configurable EJB start-up
Hi, Another option could be that the Session Bean instantiates and registers a rmi object if it does not exist, and use this object as the global state. I think it must not be difficult to register a rmi object in the Orion rmi registry. I will try ... Do you find suitable this solution ? Or you find more correct to use an Entity Bean ? Another question: Configurable EJB start-up. Is it possible in any server or is included in the spec any way of configuring EJB start-up ? Let´s say a CheckerEJB that wakes up at ten o´clock in order to update some information. Is it possible to set this in any server ? Jens Stutte wrote: > As far as i know, there is no other way than defining a real entity bean to > store something. One could think to use static variables within a stateless > session bean, but this approach fails if it comes to clustered servers with > multiple JVMs (and nobody can guarantee anything about the lifetime of a > static variable, when the bean is no longer in use in a single JVM model, > too). The spec does not define some sort of "stateful server bean" to store > temporary information within server lifetime, so you have to simulate it by > an entity bean (which means, to ensure transaction safe behaviour and so on > you'll need a database...). BTW, this is not very orion specific ;-). > > Jens Stutte > > -Ursprüngliche Nachricht- > Von: Pedro Garcia Lopez [mailto:[EMAIL PROTECTED]] > Gesendet am: Donnerstag, 25. Mai 2000 13:01 > An: Orion-Interest > Betreff: EJB state question > > Hi all, > > How can I maintain non-persistent state in a component that will be > accesed by multiple clients ? > > For example, I have a component that subscribes to a JMS topic and > listen for events. > I created a Stateless Session Bean with a getLastMesssage() methof that > returns the last message obtained from the topic. > But, due to the stateless nature of the session bean, it always returns > the default value. > If it is statful is only valid for a client, so ... > > Is it possible in the EJB model to create a component that maintain > state and it is accesed for several users ? > > In the Web model (WAR) you can use a bean with application scope, but, > how can I do it with EJBs ? > > Regards,
EJB state question
Hi all, How can I maintain non-persistent state in a component that will be accesed by multiple clients ? For example, I have a component that subscribes to a JMS topic and listen for events. I created a Stateless Session Bean with a getLastMesssage() methof that returns the last message obtained from the topic. But, due to the stateless nature of the session bean, it always returns the default value. If it is statful is only valid for a client, so ... Is it possible in the EJB model to create a component that maintain state and it is accesed for several users ? In the Web model (WAR) you can use a bean with application scope, but, how can I do it with EJBs ? Regards,
JMS access exception
Hi, I have tested several JMS examples in Orion and all works fine. My only problem is that I must always use the admin user. If I log as another user this exception occcurs: Any idea ? -- I am looking for an specific permission in principals.xml but I only found the Administration permission-- Thank you in advance. D:\apps\orion\demo\jms\jmspub>java -classpath ../../../orion.jar;. examples.jms. topic.TopicSend Exception in thread "main" java.lang.SecurityException: Not allowed to look up j ava:comp/ResourceFinder at com.evermind.server.rmi.a6.es(JAX) at com.evermind.server.rmi.RMIServer.es(JAX, Compiled Code) at com.evermind.server.rmi.RMIContext.lookup(JAX) at com.evermind.server.administration.LazyResourceFinder.es(JAX) at com.evermind.server.administration.LazyResourceFinder.getLocation(JAX ) at com.evermind.server.Application.ahs(JAX, Compiled Code) at com.evermind.server.ApplicationClientInitialContextFactory.getInitial Context(JAX) at javax.naming.spi.NamingManager.getInitialContext(NamingManager.java:6 72) at javax.naming.InitialContext.getDefaultInitCtx(InitialContext.java:250 ) at javax.naming.InitialContext.init(InitialContext.java:226) at javax.naming.InitialContext.(InitialContext.java:182) at examples.jms.topic.TopicSend.main(TopicSend.java:77)
Applet 2 EJB communication
Hi all, My question is: What jar libraries do I need for a remote client component ? Is the tag in ejb-jar.xml supported ? employee_service_client.jar I tryed it without success. If you test Orion examples in your machine all work nicely, but if you move any of them to another machine (JMSChat for example), --even getting all required jars-- the authentication fails. Why the admin account is recognized working local but not from another machine ? Thank you in advance.
Client Jar
Hi all, In the deployment phase a client jar file must be generated. Applets and application clients need this jar file in order to connect to the EJB. Where is generated ? Is it an option of some deployment file ? Thank you in advance. Pedro.
EJB Deployment in Orion
Hi all, Since Assembly of component is not a problem (other tools like J2EE deplytool exist), my main problem is for deploying applications in Orion. I can install applications (ear) but, How can access them ? In J2EE, in the deployment phase, a Client.jar file is generated that enables your standalone application access and test EJBs. Now I can only create servlets (WAR components) that access these EJBs. Could you give a simple example of the deployment of a EJB (using files)? How do you generate the client jar file ? Can I use the client jar generated by the J2EE ? Thank you in advance.