[JBoss-user] [Security & JAAS/JBoss] - Re: Insufficient method permissions

2006-03-07 Thread ebarendt 
I'm having a similar problem. I've got a session bean with some authenticated 
methods and some unchecked methods. They're correct (as far as I can tell) in 
ejb-jar.xml:


  |
  |   
  |   
  |   
  |  
  |  ScrumWorksEJB
  |  ServiceEndpoint
  |  getTest
  |  
  |  
  |   
  |
  |
  |   
  |  Team Member
  |   
  |  
  |  ScrumWorksEJB
  |  ServiceEndpoint
  |  getAuthenticatedTest
  |  
  |  
  |   
  |
  | 

This is in the jboss.xml:

  |java:/jaas/ScrumWorks
  |guest
  | 

and my login-config.xml seems correct:

  | 
  |   
  | 
  |   java:/jdbc/ScrumWorksDS
  |   
  | SELECT password FROM userejb WHERE userName=?
  |   
  |   
  | SELECT r.roleName as name, 'Roles'
  | FROM userejb u, roleejb r, userejb_roles_roleejb_users ur
  | WHERE u.userId=ur.userejb AND r.roleId=ur.roleejb AND 
u.userName=?
  |   
  |   guest
  | 
  |   
  | 
  | 

But when I try to call a method that is marked as "unchecked", I get a 401 
error  authorization failure. This seemed like a Tomcat error, so I tried 
chaning the default security domain:

  | java:/jaas/ScrumWorks
  | 

which didn't help either.

The server.log file contains:

  | 2006-03-07 10:32:24,027 TRACE 
[org.jboss.security.auth.spi.DatabaseServerLoginModule] Authenticating as 
unauthenticatedIdentity=guest
  | 2006-03-07 10:32:24,028 TRACE 
[org.jboss.security.auth.spi.DatabaseServerLoginModule] User 'guest' 
authenticated, loginOk=true
  | 2006-03-07 10:32:24,028 TRACE 
[org.jboss.security.auth.spi.DatabaseServerLoginModule] commit, loginOk=true
  | 2006-03-07 10:32:24,028 TRACE 
[org.jboss.security.auth.spi.DatabaseServerLoginModule] getRoleSets using 
rolesQuery: SELECT r.roleName as name, 'Roles'
  | FROM userejb u, roleejb r, userejb_roles_roleejb_users ur
  | WHERE u.userId=ur.userejb AND r.roleId=ur.roleejb AND 
u.userName=?, username: guest
  | 2006-03-07 10:32:24,041 TRACE 
[org.jboss.security.auth.spi.DatabaseServerLoginModule] suspendAnyTransaction
  | 2006-03-07 10:32:24,041 TRACE 
[org.jboss.security.auth.spi.DatabaseServerLoginModule] Excuting query: SELECT 
r.roleName as name, 'Roles'
  | FROM userejb u, roleejb r, userejb_roles_roleejb_users ur
  | WHERE u.userId=ur.userejb AND r.roleId=ur.roleejb AND 
u.userName=?, with username: guest
  | 2006-03-07 10:32:24,085 TRACE 
[org.jboss.security.auth.spi.DatabaseServerLoginModule] No roles found
  | 2006-03-07 10:32:24,086 TRACE 
[org.jboss.security.auth.spi.DatabaseServerLoginModule] resumeAnyTransaction
  | 2006-03-07 10:32:24,088 TRACE 
[org.jboss.security.plugins.JaasSecurityManager.ScrumWorks] defaultLogin, 
[EMAIL PROTECTED], subject=Subject(19164996).principals=org.jboss.securi
  | [EMAIL PROTECTED](guest)[EMAIL PROTECTED](Roles(members))
  | 2006-03-07 10:32:24,088 TRACE 
[org.jboss.security.plugins.JaasSecurityManager.ScrumWorks] updateCache, 
inputSubject=Subject(19164996)[EMAIL PROTECTED](guest)org.jboss.se
  | [EMAIL PROTECTED](Roles(members)), cacheSubject=Subject(17103032)[EMAIL 
PROTECTED](guest)[EMAIL PROTECTED](Roles(members))
  | 2006-03-07 10:32:24,089 TRACE 
[org.jboss.security.plugins.JaasSecurityManager.ScrumWorks] Inserted cache 
info: [EMAIL PROTECTED](17103032).principals=o
  | [EMAIL PROTECTED](guest)[EMAIL 
PROTECTED](Roles(members)),credential.class=null,expirationTime=1141758128525]
  | 2006-03-07 10:32:24,089 TRACE 
[org.jboss.security.plugins.JaasSecurityManager.ScrumWorks] End isValid, true
  | 2006-03-07 10:32:24,097 TRACE [org.jboss.security.SecurityAssociation] 
pushSubjectContext, subject=Subject:
  | Principal: guest
  | Principal: Roles(members)
  | , [EMAIL PROTECTED],subject=31392528}
  | 2006-03-07 10:32:24,100 TRACE [org.jboss.security.SecurityAssociation] 
pushRunAsIdentity, runAs=null
  | 2006-03-07 10:32:24,122 TRACE [org.jboss.security.SecurityAssociation] 
popRunAsIdentity, runAs=null
  | 2006-03-07 10:32:24,122 TRACE [org.jboss.security.SecurityAssociation] 
popSubjectContext, [EMAIL PROTECTED],subject=31392528}
  | 2006-03-07 10:32:24,142 TRACE [org.jboss.security.SecurityAssociation] 
getPrincipal, principal=null
  | 

and


  | 2006-03-07 11:00:27,241 DEBUG 
[org.apache.catalina.authenticator.AuthenticatorBase] Security checking request 
POST /scrumworks-api/scrumworks
  | 2006-03-07 11:00:27,242 DEBUG [org.apache.catalina.realm.RealmBase]   
Checking constraint 'SecurityConstraint[ScrumWorksEndpoint]' against POST 
/scrumworks --> true
  | 2006-03-07 11:00:27,242 DEBUG [org.apache.catalina.realm.RealmBase]   
Checking constraint 'SecurityConstraint[ScrumWorksEndpoint]' against POST 
/scrumworks --> true
  | 2006-03-07 11:00:27,242 DEBUG 
[org.apache.catalina.authenticator.AuthenticatorBase]  Calling 
hasU

[JBoss-user] [Installation & Configuration] - Re: logging

2005-06-01 Thread ebarendt 
Nevermind. It turns out that JSPWiki kept turning off logging.

View the original post : 
http://www.jboss.org/index.html?module=bb&op=viewtopic&p=3879782#3879782

Reply to the post : 
http://www.jboss.org/index.html?module=bb&op=posting&mode=reply&p=3879782


---
This SF.Net email is sponsored by Yahoo.
Introducing Yahoo! Search Developer Network - Create apps using Yahoo!
Search APIs Find out how you can build Yahoo! directly into your own
Applications - visit http://developer.yahoo.net/?fr=offad-ysdn-ostg-q22005
___
JBoss-user mailing list
JBoss-user@lists.sourceforge.net
https://lists.sourceforge.net/lists/listinfo/jboss-user

[JBoss-user] [Installation & Configuration] - logging

2005-06-01 Thread ebarendt 
We're running JBoss 3.2.3 on a couple FreeBSD machines. It works great, but an 
hour or two after startup, it quits logging anything to server.log or the 
console. Any ideas?

Thanks,
Eric

View the original post : 
http://www.jboss.org/index.html?module=bb&op=viewtopic&p=3879762#3879762

Reply to the post : 
http://www.jboss.org/index.html?module=bb&op=posting&mode=reply&p=3879762


---
This SF.Net email is sponsored by Yahoo.
Introducing Yahoo! Search Developer Network - Create apps using Yahoo!
Search APIs Find out how you can build Yahoo! directly into your own
Applications - visit http://developer.yahoo.net/?fr=offad-ysdn-ostg-q22005
___
JBoss-user mailing list
JBoss-user@lists.sourceforge.net
https://lists.sourceforge.net/lists/listinfo/jboss-user

[JBoss-user] [Persistence & CMP/JBoss] - Re: DB-Independent configuration

2004-08-23 Thread ebarendt 
Is this something that's addressed in JBoss 4.0? I could work on a patch for the 3.2 
series. Not sure how difficult it would be, but I'd be willing to look into it.

Eric

View the original post : 
http://www.jboss.org/index.html?module=bb&op=viewtopic&p=3845918#3845918

Reply to the post : 
http://www.jboss.org/index.html?module=bb&op=posting&mode=reply&p=3845918


---
SF.Net email is sponsored by Shop4tech.com-Lowest price on Blank Media
100pk Sonic DVD-R 4x for only $29 -100pk Sonic DVD+R for only $33
Save 50% off Retail on Ink & Toner - Free Shipping and Free Gift.
http://www.shop4tech.com/z/Inkjet_Cartridges/9_108_r285
___
JBoss-user mailing list
[EMAIL PROTECTED]
https://lists.sourceforge.net/lists/listinfo/jboss-user

[JBoss-user] [Persistence & CMP/JBoss] - DB-Independent configuration

2004-08-13 Thread ebarendt 
Is there a way to not have to specify the datasource-mapping in the jbosscmp-jdbc.xml 
file that's deployed with the application? I don't mind specifing the JNDI name, 
that's fine. But it shouldn't matter what DB I deploy my app to.

Thanks,
Eric

View the original post : 
http://www.jboss.org/index.html?module=bb&op=viewtopic&p=3845056#3845056

Reply to the post : 
http://www.jboss.org/index.html?module=bb&op=posting&mode=reply&p=3845056


---
SF.Net email is sponsored by Shop4tech.com-Lowest price on Blank Media
100pk Sonic DVD-R 4x for only $29 -100pk Sonic DVD+R for only $33
Save 50% off Retail on Ink & Toner - Free Shipping and Free Gift.
http://www.shop4tech.com/z/Inkjet_Cartridges/9_108_r285
___
JBoss-user mailing list
[EMAIL PROTECTED]
https://lists.sourceforge.net/lists/listinfo/jboss-user