[JBoss-user] [Security & JAAS/JBoss] - PooledInvoker SSL issue
I'm using the PooledInvoker and client certificate authentication to EJBs with mixed success. Periodically method calls fail because there is no principal/credential passed into the login modules. I was able to duplicate the problem with org.jboss.test.pooled.test.SSLSocketsUnitTestCase from the testsuite. However, the behavior is not consistent. If you loop through the call to echoCaller 1,000 times it fails most of the time. I'm running JBoss-4.0.4.CR2 ejb3 installation. I'm using Sun's JDK 1.5.0_06 running on Windows XP Pro. If you can't duplicate the problem and would like to see my logs let me know. Thanks, Aaron View the original post : http://www.jboss.com/index.html?module=bb&op=viewtopic&p=3938558#3938558 Reply to the post : http://www.jboss.com/index.html?module=bb&op=posting&mode=reply&p=3938558 --- Using Tomcat but need to do more? Need to support web services, security? Get stuff done quickly with pre-integrated technology to make your job easier Download IBM WebSphere Application Server v.1.0.1 based on Apache Geronimo http://sel.as-us.falkag.net/sel?cmd=lnk&kid=120709&bid=263057&dat=121642 ___ JBoss-user mailing list JBoss-user@lists.sourceforge.net https://lists.sourceforge.net/lists/listinfo/jboss-user
[JBoss-user] [Security & JAAS/JBoss] - Re: Client Cert EJB
I found the answer in a similar thread http://www.jboss.com/index.html?module=bb&op=viewtopic&p=3933179 Thanks. View the original post : http://www.jboss.com/index.html?module=bb&op=viewtopic&p=3937306#3937306 Reply to the post : http://www.jboss.com/index.html?module=bb&op=posting&mode=reply&p=3937306 --- This SF.Net email is sponsored by xPML, a groundbreaking scripting language that extends applications into web and mobile media. Attend the live webcast and join the prime developer group breaking into this new coding territory! http://sel.as-us.falkag.net/sel?cmd=lnk&kid=110944&bid=241720&dat=121642 ___ JBoss-user mailing list JBoss-user@lists.sourceforge.net https://lists.sourceforge.net/lists/listinfo/jboss-user
[JBoss-user] [Security & JAAS/JBoss] - Re: Client Cert EJB
I finally got approval from the client. I checked out the PooledInvoker, and I think I will try that approach. Other than providing custom socket factories, do I need to do anything special for a server side login module to access the client cert as a credential? What kind of configuration would be required on the client? Will the ClientLoginModule still be necessary? Thanks, Aaron View the original post : http://www.jboss.com/index.html?module=bb&op=viewtopic&p=3937224#3937224 Reply to the post : http://www.jboss.com/index.html?module=bb&op=posting&mode=reply&p=3937224 --- This SF.Net email is sponsored by xPML, a groundbreaking scripting language that extends applications into web and mobile media. Attend the live webcast and join the prime developer group breaking into this new coding territory! http://sel.as-us.falkag.net/sel?cmd=lnk&kid=110944&bid=241720&dat=121642 ___ JBoss-user mailing list JBoss-user@lists.sourceforge.net https://lists.sourceforge.net/lists/listinfo/jboss-user
[JBoss-user] [Security & JAAS/JBoss] - Client Cert EJB
I'm moving from a webapp using client-cert authentication to a thick client. I need to continue using certificates for authentication. All work is performed in EJBs, and I was considering a couple of different approaches. 1. Enable RMI+SSL for EJBs and subclass RMISSLClientSocketFactory and RMISSLServerSocketFactory to provide/require client certificates. Will the certificate be available to a JAAS CallbackHandler for authentication? 2. Copy the SRP stuff where possible, but use certificates. Is either one of these feasible or should I pursue something else? Any advice is appreciated. View the original post : http://www.jboss.com/index.html?module=bb&op=viewtopic&p=3922702#3922702 Reply to the post : http://www.jboss.com/index.html?module=bb&op=posting&mode=reply&p=3922702 --- This SF.net email is sponsored by: Splunk Inc. Do you grep through log files for problems? Stop! Download the new AJAX search engine that makes searching your log files as easy as surfing the web. DOWNLOAD SPLUNK! http://sel.as-us.falkag.net/sel?cmd=lnk&kid=103432&bid=230486&dat=121642 ___ JBoss-user mailing list JBoss-user@lists.sourceforge.net https://lists.sourceforge.net/lists/listinfo/jboss-user
[JBoss-user] [EJB 3.0] - Re: SLSB as a client
That should work for my particular case. Just out of curiosity, what would one do for 3.0 entities? Will they cause the same problem? View the original post : http://www.jboss.com/index.html?module=bb&op=viewtopic&p=3917924#3917924 Reply to the post : http://www.jboss.com/index.html?module=bb&op=posting&mode=reply&p=3917924 --- This SF.net email is sponsored by: Splunk Inc. Do you grep through log files for problems? Stop! Download the new AJAX search engine that makes searching your log files as easy as surfing the web. DOWNLOAD SPLUNK! http://sel.as-us.falkag.net/sel?cmd=lnk&kid=103432&bid=230486&dat=121642 ___ JBoss-user mailing list JBoss-user@lists.sourceforge.net https://lists.sourceforge.net/lists/listinfo/jboss-user
[JBoss-user] [EJB 3.0] - SLSB as a client
I have a EJB 3.0 SLSB in one .ear (ear1) file acting as a client to a SLSB in another .ear (ear2). I am using issolated class loading and I have to include the .ejb3 file from ear2 into ear1 for it to find the classes. However, when I try to bundle the .ejb3 file from ear2 in ear1 it trys to reploy the file even if I change the extension to .jar. What is the best approach for this? I don't want to disable nested deployments for the entire server. Can I do that for this application only? View the original post : http://www.jboss.com/index.html?module=bb&op=viewtopic&p=3917876#3917876 Reply to the post : http://www.jboss.com/index.html?module=bb&op=posting&mode=reply&p=3917876 --- This SF.net email is sponsored by: Splunk Inc. Do you grep through log files for problems? Stop! Download the new AJAX search engine that makes searching your log files as easy as surfing the web. DOWNLOAD SPLUNK! http://sel.as-us.falkag.net/sel?cmd=lnk&kid=103432&bid=230486&dat=121642 ___ JBoss-user mailing list JBoss-user@lists.sourceforge.net https://lists.sourceforge.net/lists/listinfo/jboss-user
[JBoss-user] [Messaging, JMS & JBossMQ] - Re: HAJMS Newbie
Thanks for your reply. It really cleared things up for me. The reason I thought I had to do the lookups myself using HA-JNDI is because topic lookups failed unless I used HA-JNDI. Final question I swear, just so I'm clear. 1) Lookup up java:/JmsXA through default initial context, lookup topic up through HA-JNDI. 2) I can cache JmsXA because it will handle failover for me. 3) Can I cache the topic lookup, or will it become invalid after node failure? Thanks Again! View the original post : http://www.jboss.org/index.html?module=bb&op=viewtopic&p=3868196#3868196 Reply to the post : http://www.jboss.org/index.html?module=bb&op=posting&mode=reply&p=3868196 --- SF email is sponsored by - The IT Product Guide Read honest & candid reviews on hundreds of IT Products from real users. Discover which products truly live up to the hype. Start reading now. http://ads.osdn.com/?ad_id=6595&alloc_id=14396&op=click ___ JBoss-user mailing list JBoss-user@lists.sourceforge.net https://lists.sourceforge.net/lists/listinfo/jboss-user
[JBoss-user] [Messaging, JMS & JBossMQ] - Re: HAJMS Newbie
Thanks for your reply. I'm glad enlisting HAJMS in transactions is possible, and I have successfully tested our MDB's but I'm a little confused regarding session beans. 1. My understanding is that for JMS to be treated as a manged resource it has to be listed in your deployment desciptor and looked up via java:comp/env, and I thought you had to look up HAJMS using HAJNDI which can't see java:comp can it? 2. In your response, you said if failover occurs exceptions may be caught. Should a new lookup be performed if publishing a message fails due to HA Singleton moving, or is it legal to register session beans as exception listeners? View the original post : http://www.jboss.org/index.html?module=bb&op=viewtopic&p=3868058#3868058 Reply to the post : http://www.jboss.org/index.html?module=bb&op=posting&mode=reply&p=3868058 --- SF email is sponsored by - The IT Product Guide Read honest & candid reviews on hundreds of IT Products from real users. Discover which products truly live up to the hype. Start reading now. http://ads.osdn.com/?ad_id=6595&alloc_id=14396&op=click ___ JBoss-user mailing list JBoss-user@lists.sourceforge.net https://lists.sourceforge.net/lists/listinfo/jboss-user
[JBoss-user] [Messaging, JMS & JBossMQ] - HAJMS Newbie
Is it possible to get the transaction behavior of java:/JmsXA with HAJMS? View the original post : http://www.jboss.org/index.html?module=bb&op=viewtopic&p=3867969#3867969 Reply to the post : http://www.jboss.org/index.html?module=bb&op=posting&mode=reply&p=3867969 --- SF email is sponsored by - The IT Product Guide Read honest & candid reviews on hundreds of IT Products from real users. Discover which products truly live up to the hype. Start reading now. http://ads.osdn.com/?ad_id=6595&alloc_id=14396&op=click ___ JBoss-user mailing list JBoss-user@lists.sourceforge.net https://lists.sourceforge.net/lists/listinfo/jboss-user
[JBoss-user] [Security & JAAS/JBoss] - Re: jaas identity replaced
That worked. Thanks for the tip. I never would have made the connection with SimplePrincipal and custom principal. View the original post : http://www.jboss.org/index.html?module=bb&op=viewtopic&p=3864819#3864819 Reply to the post : http://www.jboss.org/index.html?module=bb&op=posting&mode=reply&p=3864819 --- This SF.Net email is sponsored by: IntelliVIEW -- Interactive Reporting Tool for open source databases. Create drag-&-drop reports. Save time by over 75%! Publish reports on the web. Export to DOC, XLS, RTF, etc. Download a FREE copy at http://www.intelliview.com/go/osdn_nl ___ JBoss-user mailing list JBoss-user@lists.sourceforge.net https://lists.sourceforge.net/lists/listinfo/jboss-user
[JBoss-user] [Security & JAAS/JBoss] - jaas identity replaced
I have a custom login module that uses client certificates. It sets the identity to a SimplePrincipal with the CN portion of the certificate. However, in my servlet calls to request.getUserPrincipal().getName() return the entire subject DN. I checked, and the principal is an instance of sun.security.x509.X500Name. When does this replacement happen? How do I stop it? I am running JBoss 4.0.1 on Windows XP with Sun's JDK 1.5. Thanks for any help. View the original post : http://www.jboss.org/index.html?module=bb&op=viewtopic&p=3864630#3864630 Reply to the post : http://www.jboss.org/index.html?module=bb&op=posting&mode=reply&p=3864630 --- This SF.Net email is sponsored by: IntelliVIEW -- Interactive Reporting Tool for open source databases. Create drag-&-drop reports. Save time by over 75%! Publish reports on the web. Export to DOC, XLS, RTF, etc. Download a FREE copy at http://www.intelliview.com/go/osdn_nl ___ JBoss-user mailing list JBoss-user@lists.sourceforge.net https://lists.sourceforge.net/lists/listinfo/jboss-user
[JBoss-user] [Clustering/JBoss] - clustering 3.2.5
Too bad 3.2.5 still ships with the same broken jgroups.jar from 3.2.4 despite reporting a problem. If your having a problem getting your nodes to see each other try upgrading to jgroups 2.2.5. It worked for me. View the original post : http://www.jboss.org/index.html?module=bb&op=viewtopic&p=3840284#3840284 Reply to the post : http://www.jboss.org/index.html?module=bb&op=posting&mode=reply&p=3840284 --- This SF.Net email sponsored by Black Hat Briefings & Training. Attend Black Hat Briefings & Training, Las Vegas July 24-29 - digital self defense, top technical experts, no vendor pitches, unmatched networking opportunities. Visit www.blackhat.com ___ JBoss-user mailing list [EMAIL PROTECTED] https://lists.sourceforge.net/lists/listinfo/jboss-user
[JBoss-user] [Beginners Corner] - Clustered MDB
Using 3.2.4, I configured JBossMQ to use Oracle for both state and persistence managers in the all configuration. When I deploy an ear with MDBs that are durable subscribers to any node in the cluster it works fine, but if I deploy the same ear to multiple nodes, I receive a javax.jms.IllegalStateException: The durable subscription is already in use. Is clustering of durable MDBs supported? View the original post : http://www.jboss.org/index.html?module=bb&op=viewtopic&p=3840183#3840183 Reply to the post : http://www.jboss.org/index.html?module=bb&op=posting&mode=reply&p=3840183 --- This SF.Net email sponsored by Black Hat Briefings & Training. Attend Black Hat Briefings & Training, Las Vegas July 24-29 - digital self defense, top technical experts, no vendor pitches, unmatched networking opportunities. Visit www.blackhat.com ___ JBoss-user mailing list [EMAIL PROTECTED] https://lists.sourceforge.net/lists/listinfo/jboss-user
[JBoss-user] [Clustering/JBoss] - Re: 3.2.4 cluster problem
Upgrading to JGroups 2.2.5 fixed this problem. View the original post : http://www.jboss.org/index.html?module=bb&op=viewtopic&p=3840174#3840174 Reply to the post : http://www.jboss.org/index.html?module=bb&op=posting&mode=reply&p=3840174 --- This SF.Net email sponsored by Black Hat Briefings & Training. Attend Black Hat Briefings & Training, Las Vegas July 24-29 - digital self defense, top technical experts, no vendor pitches, unmatched networking opportunities. Visit www.blackhat.com ___ JBoss-user mailing list [EMAIL PROTECTED] https://lists.sourceforge.net/lists/listinfo/jboss-user
[JBoss-user] [Clustering/JBoss] - Re: 3.2.4 cluster problem
Bela,
Thanks for the response.
The cluster-service.xml I am using is the default for 3.2.3
I saved it as test.xml as suggested.
First machine output:
pegasus:/home/frdonam/software/jboss/server/all/lib% java -cp
jgroups.jar:commons-logging.jar:./ org.jgroups.Version
Version:2.2.4
CVS:$Id: Version.java,v 1.5 2004/04/28 18:44:58 belaban Exp $
History:(see doc/history.txt for details)
pegasus:/home/frdonam/software/jboss/server/all/lib% java -cp
jgroups.jar:commons-logging.jar:./ org.jgroups.demos.Draw -props test.xml
19:05:56,267 [DEBUG] org.jgroups.conf.ClassConfigurator: mapping is:
1: class org.jgroups.stack.IpAddress
2: class org.jgroups.protocols.CAUSAL$CausalHeader
3: class org.jgroups.protocols.FD$FdHeader
4: class org.jgroups.protocols.FD_PID$FdHeader
5: class org.jgroups.protocols.FD_PROB$FdHeader
6: class org.jgroups.protocols.FD_SOCK$FdHeader
7: class org.jgroups.protocols.FRAG$FragHeader
8: class org.jgroups.protocols.MERGE$MergeHeader
9: class org.jgroups.protocols.NakAckHeader
10: class org.jgroups.protocols.PARTITIONER$PartitionerHeader
11: class org.jgroups.protocols.PerfHeader
12: class org.jgroups.protocols.PIGGYBACK$PiggybackHeader
13: class org.jgroups.protocols.PingHeader
14: class org.jgroups.protocols.TcpHeader
15: class org.jgroups.protocols.TOTAL$Header
16: class org.jgroups.protocols.TOTAL_OLD$TotalHeader
17: class org.jgroups.protocols.TOTAL_TOKEN$TotalTokenHeader
18: class org.jgroups.protocols.TOTAL_TOKEN$RingTokenHeader
19: class org.jgroups.protocols.TunnelHeader
20: class org.jgroups.protocols.UdpHeader
21: class org.jgroups.protocols.UNICAST$UnicastHeader
22: class org.jgroups.protocols.VERIFY_SUSPECT$VerifyHeader
23: class org.jgroups.protocols.WANPIPE$WanPipeHeader
24: class org.jgroups.protocols.pbcast.GMS$GmsHeader
25: class org.jgroups.protocols.pbcast.NakAckHeader
26: class org.jgroups.protocols.pbcast.PbcastHeader
27: class org.jgroups.protocols.pbcast.STABLE$StableHeader
28: class org.jgroups.protocols.pbcast.STATE_TRANSFER$StateHeader
29: class org.jgroups.protocols.SMACK$SmackHeader
50: class org.jgroups.service.lease.LeaseRequestHeader
51: class org.jgroups.service.lease.LeaseResponseHeader
52: class org.jgroups.service.lease.DenyResponseHeader
53: class org.jgroups.protocols.COMPRESS$CompressHeader
19:09:18,655 [DEBUG] org.jgroups.protocols.AUTOCONF: frag_size=64000
19:09:18,861 [DEBUG] org.jgroups.protocols.pbcast.GMS: changed role to
org.jgroups.protocols.pbcast.ClientGmsImpl
19:09:18,862 [DEBUG] org.jgroups.protocols.pbcast.GMS: null became client
19:09:18,936 [DEBUG] org.jgroups.protocols.UDP: creating sockets and starting threads
19:09:18,942 [INFO] org.jgroups.protocols.UDP: unicast sockets will use interface
136.195.116.11
19:09:18,956 [INFO] org.jgroups.protocols.UDP: socket information:
local_addr=pegasus:59325, mcast_addr=228.1.2.3:45566, bind_addr=/136.195.116.11, ttl=64
socket: bound to 136.195.116.11:59325, receive buffer size=8, send buffer
size=15
multicast socket: bound to 136.195.116.11:45566, send buffer size=15, receive
buffer size=8
19:09:18,963 [DEBUG] org.jgroups.protocols.UDP: created unicast receiver thread
---
GMS: address is pegasus:59325
---
19:09:18,977 [DEBUG] org.jgroups.protocols.PING: FIND_INITIAL_MBRS
19:09:18,994 [DEBUG] org.jgroups.protocols.PING: waiting for initial members:
time_to_wait=2000, got 0 rsps
19:09:18,996 [DEBUG] org.jgroups.protocols.UDP: sending message to 228.1.2.3:45566
(src=pegasus:59325), headers are {PING=[PING: type=GET_MBRS_REQ, arg=null],
UDP=[UDP:group_addr=DrawGroupDemo]}
19:09:19,011 [DEBUG] org.jgroups.protocols.UDP: received (mcast) 101 bytes from
/136.195.116.11:59325 (size=101 bytes)
19:09:19,025 [DEBUG] org.jgroups.protocols.UDP: message is [dst: 228.1.2.3:45566, src:
pegasus:59325 (2 headers), size = 0 bytes], headers are {PING=[PING:
type=GET_MBRS_REQ, arg=null], UDP=[UDP:group_addr=DrawGroupDemo]}
19:09:21,000 [DEBUG] org.jgroups.protocols.PING: initial mbrs are []
19:09:21,002 [DEBUG] org.jgroups.protocols.pbcast.ClientGmsImpl: initial_mbrs are []
19:09:21,003 [DEBUG] org.jgroups.protocols.pbcast.ClientGmsImpl: no initial members
discovered: creating group as first member
19:09:21,005 [DEBUG] org.jgroups.protocols.pbcast.GMS: [local_addr=pegasus:59325] view
is [pegasus:59325|0] [pegasus:59325]
19:09:21,024 [DEBUG] org.jgroups.protocols.pbcast.GMS: changed role to
org.jgroups.protocols.pbcast.CoordGmsImpl
19:09:21,025 [DEBUG] org.jgroups.protocols.pbcast.GMS: pegasus:59325 became coordinator
19:09:21,026 [DEBUG] org.jgroups.protocols.pbcast.ClientGmsImpl: created gr
[JBoss-user] [Clustering/JBoss] - Re: 3.2.4 cluster problem
If I run the org.jgroups.demos.Chat program from the jgroups.jar 2.2.4 that comes with JBoss 3.2.4 I get the same behavior. Clients on the same machine see each other, but remote clients are not visible. Same demo with jgroups.jar 2.2.0 from JBoss 3.2.3 works. Can I use the old jar or will that cause me other problems? View the original post : http://www.jboss.org/index.html?module=bb&op=viewtopic&p=3839403#3839403 Reply to the post : http://www.jboss.org/index.html?module=bb&op=posting&mode=reply&p=3839403 --- This SF.Net email is sponsored by The 2004 JavaOne(SM) Conference Learn from the experts at JavaOne(SM), Sun's Worldwide Java Developer Conference, June 28 - July 1 at the Moscone Center in San Francisco, CA REGISTER AND SAVE! http://java.sun.com/javaone/sf Priority Code NWMGYKND ___ JBoss-user mailing list [EMAIL PROTECTED] https://lists.sourceforge.net/lists/listinfo/jboss-user
[JBoss-user] [Clustering/JBoss] - Re: 3.2.4 cluster problem
Just as a follow up. I started 3.2.4 on one machine and 3.2.3 on the other. They see each other but complain about a version mismatch. So I'm guessing 3.2.4 is receiving requests fine but not broadcasting correctly. View the original post : http://www.jboss.org/index.html?module=bb&op=viewtopic&p=3839224#3839224 Reply to the post : http://www.jboss.org/index.html?module=bb&op=posting&mode=reply&p=3839224 --- This SF.Net email is sponsored by The 2004 JavaOne(SM) Conference Learn from the experts at JavaOne(SM), Sun's Worldwide Java Developer Conference, June 28 - July 1 at the Moscone Center in San Francisco, CA REGISTER AND SAVE! http://java.sun.com/javaone/sf Priority Code NWMGYKND ___ JBoss-user mailing list [EMAIL PROTECTED] https://lists.sourceforge.net/lists/listinfo/jboss-user
[JBoss-user] [Clustering/JBoss] - 3.2.4 cluster problem
I had two solaris machines clustered with 3.2.3. Moved to 3.2.4 and started an all instance on each box. They don't see each other. I can start two instances on the same machine and they cluster fine. The boxes both only have a single network card (That seemed to be causing others problems). Any ideas? View the original post : http://www.jboss.org/index.html?module=bb&op=viewtopic&p=3839135#3839135 Reply to the post : http://www.jboss.org/index.html?module=bb&op=posting&mode=reply&p=3839135 --- This SF.Net email is sponsored by The 2004 JavaOne(SM) Conference Learn from the experts at JavaOne(SM), Sun's Worldwide Java Developer Conference, June 28 - July 1 at the Moscone Center in San Francisco, CA REGISTER AND SAVE! http://java.sun.com/javaone/sf Priority Code NWMGYKND ___ JBoss-user mailing list [EMAIL PROTECTED] https://lists.sourceforge.net/lists/listinfo/jboss-user
