Re: [JBoss-dev] Access
Filip Hanik wrote: the way to do this today is 1. get the list of all bound names 2. retrieve all the object bound from the JNDI tree 3. type check the returned object to see if it implements the EJBHome interface Am I correct? I would say so. 1. list bindings in root context of global namespace (all deployed homes are found here) 2. select only those who are (Proxy.isProxyClass(object.getClass()) and (object instanceof EJBHome))) (although the first check is redundant, just for fun) Vladimir ___ Jboss-development mailing list [EMAIL PROTECTED] http://lists.sourceforge.net/lists/listinfo/jboss-development
Re: [JBoss-dev] Sourceforge cvs problem
Hey Fulco, Almost same config as yours. You can not use pserver authentication to commit, you have to use ssh. Get an ssh client for linux from gnomerpm if you dont have it. Do a clean checkout to get rid of CVS directories that contain old method of authentication in Root file. Do co without login command and then you can commit. Note that you still have to authenticate every time you issue cvs command. I tried to upload keys to prevent this but without success. If someone has done this , please respond. Cheers, Vladimir Fulco Muriglio wrote hallo, I'm not behind a firewall and I use Linux, cvs works except for commit: the response is: cvs [server aborted]: "commit" requires write access to the repository Is it a problem of my account? The command was: cvs -z3 -d:pserver:[EMAIL PROTECTED]:/cvsroot/jboss commit contrib/catalina but I've tried also: cvs -z3 -d:pserver:[EMAIL PROTECTED]:/cvsroot/jboss commit contrib/catalina With the same result. Bye Fulco ___ Jboss-development mailing list [EMAIL PROTECTED] http://lists.sourceforge.net/lists/listinfo/jboss-development ___ Jboss-development mailing list [EMAIL PROTECTED] http://lists.sourceforge.net/lists/listinfo/jboss-development
RE: [JBoss-dev] Access
There is no centralized repository at this point... hack one in the container factory I am surprised you can't browse the home from JNDI though, that smells of "bad config" to me marc -Original Message-From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]]On Behalf Of J. G. ZambranoSent: Wednesday, March 28, 2001 3:23 PMTo: [EMAIL PROTECTED]Subject: [JBoss-dev] Access Hello, I need to access all the homes deployed in a JBoss container from a client without having the bound name. I have tried several approaches using the client's initial context and was unable todo so. Any help would be appreciated! JGZ
[JBoss-dev] CVS update: jbosssx/src/main/org/jboss/security/plugins AbstractServerLoginModule.java
User: starksm
Date: 01/03/28 18:28:38
Modified:src/main/org/jboss/security/plugins
AbstractServerLoginModule.java
Log:
Further generalize the notion of role mapping to allow sets of named
roles using any number of Groups
Revision ChangesPath
1.4 +63 -45
jbosssx/src/main/org/jboss/security/plugins/AbstractServerLoginModule.java
Index: AbstractServerLoginModule.java
===
RCS file:
/cvsroot/jboss/jbosssx/src/main/org/jboss/security/plugins/AbstractServerLoginModule.java,v
retrieving revision 1.3
retrieving revision 1.4
diff -u -r1.3 -r1.4
--- AbstractServerLoginModule.java2001/03/22 09:40:03 1.3
+++ AbstractServerLoginModule.java2001/03/29 02:28:38 1.4
@@ -31,24 +31,19 @@
own custom LoginModule and override the getRoles() and getIdentity()
methods.
-Roles to the subject as Principals in a Group named 'Roles'
-to the
- *
- * You may also wish to override
- *
- *public void initialize(Subject subject, CallbackHandler callbackHandler, Map
sharedState, Map options)
- *
- * In which case the first line of your initialize() method should be
super.initialize(subject, callbackHandler, sharedState, options);
- *
- * You may also wish to override
- *
- *public boolean login() throws LoginException
- *
- * In which case the last line of your login() method should be return
super.login();
- *
+You may also wish to override
+public void initialize(Subject subject, CallbackHandler callbackHandler, Map
sharedState, Map options)
+
+In which case the first line of your initialize() method should be:
+super.initialize(subject, callbackHandler, sharedState, options);
+You may also wish to override
+public boolean login() throws LoginException
+In which case the last line of your login() method should be
+return super.login();
+
@author a href="[EMAIL PROTECTED]"Edward Kenworthy/a, 12th Dec
2000
@author [EMAIL PROTECTED]
-@version $Revision: 1.3 $
+@version $Revision: 1.4 $
*/
public abstract class AbstractServerLoginModule implements LoginModule
{
@@ -113,9 +108,9 @@
}
/** Method to commit the authentication process (phase 2).
-It adds the getIdentity() value to the subject getPrincipals() Set
-and adds the Principals returned by getRoles() to a Group named
-'Roles' to the subject getPrincipals() Set.
+It adds the getIdentity() value to the subject getPrincipals() Set.
+It also adds the members of each Group returned by getRoleSets()
+to the subject getPrincipals() Set.
@see javax.security.auth.Subject;
@see java.security.acl.Group;
@@ -126,56 +121,79 @@
Set principals = subject.getPrincipals();
Principal identity = getIdentity();
principals.add(identity);
-Principal[] roles = getRoles();
-Group subjectRoles = getRolesGroup(principals);
-if( subjectRoles instanceof NestableGroup )
+Group[] roleSets = getRoleSets();
+for(int g = 0; g roleSets.length; g ++)
{
-/* A NestableGroup only allows Groups to be added to it so we
- need to add a SimpleGroup to subjectRoles that contains roles
-*/
-SimpleGroup tmp = new SimpleGroup("Roles");
-subjectRoles.addMember(tmp);
-subjectRoles = tmp;
-}
-for(int r = 0; roles != null r roles.length; r ++)
-{
-Principal role = roles[r];
-subjectRoles.addMember(role);
+Group group = roleSets[g];
+String name = group.getName();
+Group subjectGroup = createGroup(name, principals);
+if( subjectGroup instanceof NestableGroup )
+{
+/* A NestableGroup only allows Groups to be added to it so we
+ need to add a SimpleGroup to subjectRoles to contain the roles
+*/
+SimpleGroup tmp = new SimpleGroup("Roles");
+subjectGroup.addMember(tmp);
+subjectGroup = tmp;
+}
+// Copy the group members to the Subject group
+Enumeration members = group.members();
+while( members.hasMoreElements() )
+{
+Principal role = (Principal) members.nextElement();
+subjectGroup.addMember(role);
+}
}
return true;
}
-/**
- * Method to abort the authentication process (phase 2).
- */
+/** Method to abort the authentication process (phase 2).
+@return true alaways
+*/
public boolean abort() throws LoginException
{
return true;
}
+/**
Re: [JBoss-dev] Sourceforge cvs problem
Hey, I still can not do this on Redhat 7 although I am close. Used ssh-keygen, created both RSA and DSA key pairs, added them to running ssh-agent, uploaded pub keys to server. Did you use website upload or scp command? In the log below clearly server refuses my private RSA key . ssh -v -l vlada cvs.jboss.sourceforge.net OpenSSH_2.5.2p2, SSH protocols 1.5/2.0, OpenSSL 0x0090581f debug1: Seeding random number generator debug1: Rhosts Authentication disabled, originating port will not be trusted. debug1: ssh_connect: getuid 500 geteuid 0 anon 1 debug1: Connecting to cvs.jboss.sourceforge.net [216.136.171.202] port 22. debug1: Connection established. debug1: identity file /home/vlad/.ssh/identity type 0 debug1: unknown identity file /home/vlad/.ssh/id_rsa debug1: identity file /home/vlad/.ssh/id_rsa type -1 debug1: identity file /home/vlad/.ssh/id_dsa type 2 debug1: Remote protocol version 1.99, remote software version OpenSSH_2.5.1p1 debug1: match: OpenSSH_2.5.1p1 pat ^OpenSSH debug1: Local version string SSH-1.5-OpenSSH_2.5.2p2 debug1: Waiting for server public key. debug1: Received server public key (768 bits) and host key (1024 bits). debug1: Host 'cvs.jboss.sourceforge.net' is known and matches the RSA1 host key. debug1: Found key in /home/vlad/.ssh/known_hosts:2 debug1: Encryption type: 3des debug1: Sent encrypted session key. debug1: Installing crc compensation attack detector. debug1: Received encrypted confirmation. debug1: Trying RSA authentication via agent with '[EMAIL PROTECTED]' debug1: Server refused our key. debug1: RSA authentication using agent refused. debug1: Trying RSA authentication with key '[EMAIL PROTECTED]' debug1: Server refused our key. debug1: Doing password authentication. [EMAIL PROTECTED]'s password: Scott M Stark wrote: I have been able to upload my ssh key to allow for access without having to type the password each time. I used ssh-keygen and did not assign the generated key a passphrase. This is only working on windows 2000 though. On RedHat linux 7.0 I am having to enter the password each time. I believe this is an issue with the linux ssh using version 2 of the protocol vs version 1.5 on windows but I have not looked in the issue in detail. You can debug the secure connection setup by issuing the following command: ssh -v -l userid cvs.jboss.sourceforge.net cvs -t server You can add more than one -v arg to make the ssh output increasingly verbose. The -t to the cvs command puts it in trace mode so that it also tells you what its doing. I tried to upload keys to prevent this but without success. If someone has done this , please respond. Cheers, Vladimir ___ Jboss-development mailing list [EMAIL PROTECTED] http://lists.sourceforge.net/lists/listinfo/jboss-development
Re: [JBoss-dev] ANT Verifier task?
You don't need an explicit task for it,
see admin/build.xml for an example
http://cvs.sourceforge.net/cgi-bin/cvsweb.cgi/admin/build/build.xml?cvsroot=jboss
--8--
!-- verify the EJBs --
java classname = "org.jboss.verifier.Main" fork="true"
classpath refid = "classpath"/
arg value = "${dist.home}/admin.jar"/
/java
--8--
-- Juha
On Thu, 29 Mar 2001, marc fleury wrote:
Any news on the Task for ANT that does "verification"?
marc
_
Marc Fleury, Ph.D
[EMAIL PROTECTED]
_
___
Jboss-development mailing list
[EMAIL PROTECTED]
http://lists.sourceforge.net/lists/listinfo/jboss-development
___
Jboss-development mailing list
[EMAIL PROTECTED]
http://lists.sourceforge.net/lists/listinfo/jboss-development
