[JBoss-user] principalRoles=null
Hello again, when I asked: Has anyone found the answer to the final question in this forum thread? http://www.jboss.org/forums/thread.jsp?forum=49thread=12359 I didn't mean the first questions of the thread, because MY PRINCIPAL is NOT null and my LoginModule DOES PROVIDE THE RIGHT ROLES. However these ROLES get lost because I am using RMI over SSL. So I ask again: has anyone found the answer on how to use Roles in an SSL context... (I know it works when you don't use SSL...) TIA, Bruno --- This sf.net email is sponsored by:ThinkGeek Welcome to geek heaven. http://thinkgeek.com/sf ___ JBoss-user mailing list [EMAIL PROTECTED] https://lists.sourceforge.net/lists/listinfo/jboss-user
[JBoss-user] principalRoles=null
Has anyone found the answer to the final question in this forum thread? http://www.jboss.org/forums/thread.jsp?forum=49thread=12359 --- This sf.net email is sponsored by:ThinkGeek Welcome to geek heaven. http://thinkgeek.com/sf ___ JBoss-user mailing list [EMAIL PROTECTED] https://lists.sourceforge.net/lists/listinfo/jboss-user
[JBoss-user] Method not found in ServiceMBean
Hello,
I have written an MBean that extends ServiceMBeanSupport
and the corresponding interface that extends ServiceMBean.
In the interface I have 2 methods:
public ArrayList getRegisteredJndiNames();
public void logRegisteredJndiNames();
They are implemented in the MBean:
public ArrayList getRegisteredJndiNames() {
return registered;
}
public void logRegisteredJndiNames() {
return log.info(registered);
}
However, when I look at the jmx-console, I can only see the
logRegisteredJndiNames()-method. That is also the only method
I can invoke when I call the MBean.
What can be wrong with my getRegisteredJndiNames-method.
Is it not allowed to return an ArrayList? The returntype
seems to be the only difference between the two methods.
Bruno
---
This sf.net email is sponsored by: OSDN - Tired of that same old
cell phone? Get a new here for FREE!
https://www.inphonic.com/r.asp?r=sourceforge1refcode1=vs3390
___
JBoss-user mailing list
[EMAIL PROTECTED]
https://lists.sourceforge.net/lists/listinfo/jboss-user
Re: [JBoss-user] Method not found in ServiceMBean
Quoting Bruno [EMAIL PROTECTED]:
Hello,
I have written an MBean that extends ServiceMBeanSupport
and the corresponding interface that extends ServiceMBean.
In the interface I have 2 methods:
public ArrayList getRegisteredJndiNames();
public void logRegisteredJndiNames();
They are implemented in the MBean:
public ArrayList getRegisteredJndiNames() {
return registered;
}
public void logRegisteredJndiNames() {
return log.info(registered);
}
However, when I look at the jmx-console, I can only see the
logRegisteredJndiNames()-method. That is also the only method
I can invoke when I call the MBean.
What can be wrong with my getRegisteredJndiNames-method.
Is it not allowed to return an ArrayList? The returntype
seems to be the only difference between the two methods.
I have found the problem. It seems to been forbidden to
use get- or set-methods if you want them to show up in a
construction like this:
MBeanOperationInfo[] opInfo = info.getOperations();
I change the method name to returnRegisteredJndiNames()
and it worked...
---
This sf.net email is sponsored by: OSDN - Tired of that same old
cell phone? Get a new here for FREE!
https://www.inphonic.com/r.asp?r=sourceforge1refcode1=vs3390
___
JBoss-user mailing list
[EMAIL PROTECTED]
https://lists.sourceforge.net/lists/listinfo/jboss-user
[JBoss-user] JNLP problem
I have altered one of the jBoss examples for testing purposes. When I run it from the command line; it works just fine. When I run it loaded with JNLP (Java Web Start), I get this error: access denied (java.lang.RuntimePermission org.jboss.security.SecurityAssociation.getPrincipalInfo) I make sure Java Web Start downloads all jars that are in the client-directory, but what more do I need to do? What is the difference between running the same code from the commandline and running it within JWS? --- This sf.net email is sponsored by: OSDN - Tired of that same old cell phone? Get a new here for FREE! https://www.inphonic.com/r.asp?r=sourceforge1refcode1=vs3390 ___ JBoss-user mailing list [EMAIL PROTECTED] https://lists.sourceforge.net/lists/listinfo/jboss-user
[JBoss-user] Servlet - JAAS: example needed
Hello all, I have read a lot of documents on Servlets and on JAAS, but I need an example on the combination of the two. Concerning SERVLETS: I can't use the security-constraint in the web.xml, because not one of the possible loginoptions suits my needs. A username and password, but also a pincode have to be added in a form. And in order to have a correct login, the IP-address has to be checked too. Concerning JAAS: I understand that I could write a loginModule to check username and password, as well as pincode and IP-address, but how do I combine this with my Servlet? When a SecurityException is thrown by an EJB because the user isn't logged in, I can redirect the user to a loginpage. All credentials could then be posted to a Servlet that creates a Subject-object, but how do I bind this Subject into the correct security domain??? It's like I'm missing something, Bruno --- This sf.net email is sponsored by: Dice - The leading online job board for high-tech professionals. Search and apply for tech jobs today! http://seeker.dice.com/seeker.epl?rel_code=31 ___ JBoss-user mailing list [EMAIL PROTECTED] https://lists.sourceforge.net/lists/listinfo/jboss-user
Re: [JBoss-user] SSL: documentation + bugfix
Quoting Alex Loubyansky [EMAIL PROTECTED]: But why don't you contribute it to jboss.org? It would be even better to have all the material in one place. Of course, it's your work, you are owners and it's your choice. By sending it to the mailing list, we are contributing it to jBoss. It's there for them to integrate it into their site. I am an Open Source developer myself (see http://itext.sourceforge.net/), so I know it's sometimes difficult to work through all the contributions. Due to lack of time, a lot of user response gets lost. --- This sf.net email is sponsored by:ThinkGeek Oh, it's good to be a geek. http://thinkgeek.com/sf ___ JBoss-user mailing list [EMAIL PROTECTED] https://lists.sourceforge.net/lists/listinfo/jboss-user
Re: [JBoss-user] documentation
Peter T. Abplanalp wrote: hi all. i am wondering if there are any good docs on JBoss. i got the jboss book pre-release when i first started using jboss but it focuses mainly on jboss and what i'm looking for is documentation on integrating jboss/tomcat/apache with/without ssl, etc. i would like to use jboss for a couple production web sites but i need better docs on how these three items work together and how they can be configured. I am a newbie, but I have written a page on how to configure jBoss/Tomcat/SSL: see http://www.lowagie.com/techtips/jBossTomcatSSL.html Today I finally succeeded to have the Interest-example working over SSL too (so RMI over SSL works too, but not with the classes that are in the distribution; I posted a bug about this, but today I discoverd it is not that simple to solve it: it's more like a Catch22 than a bug). I will publish some documentation on that tomorrow. Bruno --- This sf.net email is sponsored by:ThinkGeek Welcome to geek heaven. http://thinkgeek.com/sf ___ JBoss-user mailing list [EMAIL PROTECTED] https://lists.sourceforge.net/lists/listinfo/jboss-user
[JBoss-user] Re: jBoss+Catalina+SSL
Sean Howell wrote: Hi bruno, I actually didn't solve the problem, my requirement to use SSL actually went away instead. Let me know if you solve it though, I'll be doing something with SSL in the near future. Frederic Soulier wrote: Hi Bruno, No. But I had a few things that did not work with the JBoss3 alpha/beta/rc releases (SSL was one of them). Actually yesterday I started playing again with the final release and a lot of my pbms seem to have gone :) so maybe HTTPS will work now although it's not on top of my priority to try it. I'll keep you posted if I find something interesting. Hi, it's me again. After upgrading to jBoss3.0.1, the problem was solved. I made a little page describing the different steps to configure SSL, so that you don't need to lose as much time I did if you ever need SSL again ;-) See: http://www.lowagie.com/techtips/jBossTomcatSSL.html Now I need RMI to go over SSL. If I succeed, I will update the page mentioned above. Bruno --- This sf.net email is sponsored by:ThinkGeek Welcome to geek heaven. http://thinkgeek.com/sf ___ JBoss-user mailing list [EMAIL PROTECTED] https://lists.sourceforge.net/lists/listinfo/jboss-user
[JBoss-user] another SSL question
So I finally have the combination Catalina/SSL working. Now I want RMI over SSL. When I change this in jboss-service.xml: !-- RMI/JRMP invoker -- mbean code=org.jboss.invocation.jrmp.server.JRMPInvoker name=jboss:service=invoker,type=jrmp attribute name=RMIObjectPort/attribute attribute name=RMIClientSocketFactoryorg.jboss.security.ssl.RMISSLClientSocketFactory/attribute attribute name=RMIServerSocketFactoryorg.jboss.security.ssl.RMISSLServerSocketFactory/attribute !-- attribute name=RMIServerSocketAddrcustom/attribute -- /mbean I get this NullPointerException when I start jBoss: java.lang.NullPointerException at org.jboss.security.ssl.DomainServerSocketFactory.createServerSocket(DomainServerSocketFactory.java:111) at org.jboss.security.ssl.DomainServerSocketFactory.createServerSocket(DomainServerSocketFactory.java:84) at org.jboss.security.ssl.RMISSLServerSocketFactory.createServerSocket(RMISSLServerSocketFactory.java:68) at sun.rmi.transport.tcp.TCPEndpoint.newServerSocket(TCPEndpoint.java:615) at sun.rmi.transport.tcp.TCPTransport.listen(TCPTransport.java:231) at sun.rmi.transport.tcp.TCPTransport.exportObject(TCPTransport.java:178) at sun.rmi.transport.tcp.TCPEndpoint.exportObject(TCPEndpoint.java:382) at sun.rmi.transport.LiveRef.exportObject(LiveRef.java:116) What am I doing wrong? --- This sf.net email is sponsored by:ThinkGeek Welcome to geek heaven. http://thinkgeek.com/sf ___ JBoss-user mailing list [EMAIL PROTECTED] https://lists.sourceforge.net/lists/listinfo/jboss-user
Re: [JBoss-user] A beginner's query on JBoss.
Quoting Kakoli [EMAIL PROTECTED]: Hi, I have downloaded JBoss3.0.1RC1_tomcat4.0.4. Then I am calling run.bat on Windows to start the server. It is starting successfully. But pointing to url http://localhost:8080/index.html in IE browser gives the following error : No Context configured to process this request The server console also gives error : [Engine] StandardHost[localhost]: MAPPING configuration error for request URI This is a normal error: you didn't define a ROOT-context (see the Tomcat-pages at Apache if you don't know how to do this). If you want to test if Tomcat works, try this URL: http://localhost:8080/jmx-console/index.jsp See: http://www.lowagie.com/techtips/jBossTomcatSSL.html for a little bit more info (Remark: I'm a beginner too) --- This sf.net email is sponsored by:ThinkGeek Welcome to geek heaven. http://thinkgeek.com/sf ___ JBoss-user mailing list [EMAIL PROTECTED] https://lists.sourceforge.net/lists/listinfo/jboss-user
[JBoss-user] bug in org/jboss/invocation/jrmp/server/JRMPInvoker
JRMPInvoker has a method private void loadCustomSocketFactories()
If you defined a custom serverSocketFactory, an instance of this factory
is made
and the BindAddress is set:
if( serverSocketFactoryName != null )
{
Class ssfClass = loader.loadClass(serverSocketFactoryName);
serverSocketFactory = (RMIServerSocketFactory)
ssfClass.newInstance();
if( serverAddress != null )
{
// See if the server socket supports setBindAddress(String)
try
{
Class[] parameterTypes = {String.class};
Method m = ssfClass.getMethod(setBindAddress,
parameterTypes);
Object[] args = {serverAddress};
m.invoke(serverSocketFactory, args);
}
catch (NoSuchMethodException e)
{
log.warn(Socket factory does not support
setBindAddress(String));
// Go with default address
}
catch (Exception e)
{
log.warn(Failed to setBindAddress=+serverAddress+
on socket factory, e);
// Go with default address
}
}
}
So far, so good.
But if you use org.jboss.security.ssl.RMISSLServerSocketFactory
you also have to invoke the setSecurityDomain-method.
Otherwise the RMISSLServerSocketFactory is constructed WITHOUT
a securityDomain. As a result, a DomainServerSocketFactory is constructed:
domainFactory = new DomainServerSocketFactory();
Instead of using for instance:
domainFactory = DomainServerSocketFactory.getDefault();
So the securityDomain always remains null and you get a NullPointerException
upon startup of jBoss.
In other words: it is impossible to use the provided classes to have
RMI working over SSL.
A quick patch would be to use DomainServerSocketFactory.getDefault()
in class RMISSLServerSocketFactory.
A more elegant solution would be to check for a SecurityDomain in the
JRMPInvoker class and to set this variable. This way people could chose
there own domain instead of using java:/jaas/other.
I hope I have given you enough info to solve this bug,
Bruno
---
This sf.net email is sponsored by:ThinkGeek
Welcome to geek heaven.
http://thinkgeek.com/sf
___
JBoss-user mailing list
[EMAIL PROTECTED]
https://lists.sourceforge.net/lists/listinfo/jboss-user
[JBoss-user] jBoss + Catalina + SSL
Hello,
I tried to combine jBoss with Catalina over SSL.
I followed every step in the FAQ and Forum I could find,
but I stranded here:
http://www.jboss.org/forums/thread.jsp?forum=61thread=12152message=3724076#3724076
http://www.jboss.org/forums/thread.jsp?forum=49thread=16537message=3724084q=SSL+Catalina+NullpointerException#3724084
I get the same error as described in the Forum, so I changed class
org.jboss.web.catalina.security.SSLServerSocketFactory:
public ServerSocket createSocket(int port, int backlog, InetAddress
ifAddress)
throws IOException
{
if (socketFactory == null) throw new IOException(the
socketFactory is null!);
return socketFactory.createServerSocket(port, backlog, ifAddress);
}
Now I get:
11:11:37,458 INFO [STDOUT] Apache Tomcat/4.0.3
11:11:37,520 INFO [Engine] HttpConnector Opening server socket on all
host IP addresses
11:11:37,534 ERROR [EmbeddedCatalinaServiceSX] Starting failed
LifecycleException: null.open: java.io.IOException: the socketFactory
is null!
So I was able to pinpoint the error: for some reason the socketFactory
in class
SSLServerSocketFactory is null. Can any of you help me any furher?
Bruno
---
This sf.net email is sponsored by:ThinkGeek
Caffeinated soap. No kidding.
http://thinkgeek.com/sf
___
JBoss-user mailing list
[EMAIL PROTECTED]
https://lists.sourceforge.net/lists/listinfo/jboss-user
Re: [JBoss-user] jBoss + Catalina + SSL
Bruno Lowagie wrote; So I was able to pinpoint the error: for some reason the socketFactory in class SSLServerSocketFactory is null. Can any of you help me any furher? I debugged a little further and I saw the socketFactory never gets instantiated because in method public void setSecurityDomainName(String jndiName) the iniCtx.lookup(jndiName) with jndiName = java:/jaas/RMI+SSL fails. I am still very much a newbie. Can somebody tell me what's happening here? Did I forget something somewhere? Bruno --- This sf.net email is sponsored by:ThinkGeek Caffeinated soap. No kidding. http://thinkgeek.com/sf ___ JBoss-user mailing list [EMAIL PROTECTED] https://lists.sourceforge.net/lists/listinfo/jboss-user
Re: [JBoss-user] jBoss + Catalina + SSL
Bruno Lowagie wrote: I debugged a little further and I saw the socketFactory never gets instantiated because in method public void setSecurityDomainName(String jndiName) the iniCtx.lookup(jndiName) with jndiName = java:/jaas/RMI+SSL fails. Now I found out that the reason why it fails is this: iniCtx.lookup(java:/jaas/RMI+SSL) returns an object if class org.jboss.security.plugins.JaasSecurityManager This is casted to a SecurityDomain object and throws a ClassCastException. Did I make an error in the configuration or is this a jBoss bug? Bruno --- This sf.net email is sponsored by:ThinkGeek Caffeinated soap. No kidding. http://thinkgeek.com/sf ___ JBoss-user mailing list [EMAIL PROTECTED] https://lists.sourceforge.net/lists/listinfo/jboss-user
