[JBoss-user] [Security JAAS/JBoss] - Re: Custom LoginModule is rejected by jboss
anonymous wrote : J2EE 1.4 defines a new JACC permission based contract for specifying how to delegate the authorization checks. Support for this exists in jboss-4.0.x. How does one use this? I've read all I can find about JACC (the spec, the JBoss wiki, etc.), but I'm still frankly nonplussed. View the original post : http://www.jboss.org/index.html?module=bbop=viewtopicp=3856528#3856528 Reply to the post : http://www.jboss.org/index.html?module=bbop=postingmode=replyp=3856528 --- SF email is sponsored by - The IT Product Guide Read honest candid reviews on hundreds of IT Products from real users. Discover which products truly live up to the hype. Start reading now. http://productguide.itmanagersjournal.com/ ___ JBoss-user mailing list [EMAIL PROTECTED] https://lists.sourceforge.net/lists/listinfo/jboss-user
[JBoss-user] [Security JAAS/JBoss] - Re: Custom LoginModule is rejected by jboss
I'm trying to create a custom Principal too. I must simply: 1) write my new principal that implements Principal and java.io.Serializable 2) override the AbstractServerLoginModule's commit() method in my new LoginModule with the lines specify in your post Right? Other steps needed? I must create a Group class too? Thanks fo any help! Gio View the original post : http://www.jboss.org/index.html?module=bbop=viewtopicp=3853837#3853837 Reply to the post : http://www.jboss.org/index.html?module=bbop=postingmode=replyp=3853837 --- This SF.Net email is sponsored by: Sybase ASE Linux Express Edition - download now for FREE LinuxWorld Reader's Choice Award Winner for best database on Linux. http://ads.osdn.com/?ad_id=5588alloc_id=12065op=click ___ JBoss-user mailing list [EMAIL PROTECTED] https://lists.sourceforge.net/lists/listinfo/jboss-user
[JBoss-user] [Security JAAS/JBoss] - Re: Custom LoginModule is rejected by jboss
Yes, in order to make jboss aware of the role, that was the only solution I could use. TheTestGroup class used in the example is a user class, so yes, you will have to code one too. However, now I'm going further and I'd like to use the roles in struts but it does not recognize them. I've checked the request.isUserInRole method and it returns false. Could someone from jboss comment on this? I mean, is it how it should be? Jboss is able to verify my credentials but the request does not know about it? View the original post : http://www.jboss.org/index.html?module=bbop=viewtopicp=3853896#3853896 Reply to the post : http://www.jboss.org/index.html?module=bbop=postingmode=replyp=3853896 --- This SF.Net email is sponsored by: Sybase ASE Linux Express Edition - download now for FREE LinuxWorld Reader's Choice Award Winner for best database on Linux. http://ads.osdn.com/?ad_id=5588alloc_id=12065op=click ___ JBoss-user mailing list [EMAIL PROTECTED] https://lists.sourceforge.net/lists/listinfo/jboss-user
[JBoss-user] [Security JAAS/JBoss] - Re: Custom LoginModule is rejected by jboss
I'd like to write (maybe with someone with more knowledge) a Custom Principal HOWTO... View the original post : http://www.jboss.org/index.html?module=bbop=viewtopicp=3853899#3853899 Reply to the post : http://www.jboss.org/index.html?module=bbop=postingmode=replyp=3853899 --- This SF.Net email is sponsored by: Sybase ASE Linux Express Edition - download now for FREE LinuxWorld Reader's Choice Award Winner for best database on Linux. http://ads.osdn.com/?ad_id=5588alloc_id=12065op=click ___ JBoss-user mailing list [EMAIL PROTECTED] https://lists.sourceforge.net/lists/listinfo/jboss-user
[JBoss-user] [Security JAAS/JBoss] - Re: Custom LoginModule is rejected by jboss
There are no requirements for the Subject defined in the J2EE specs. We have defined our Subject usage pattern in the online devel guide. The custom principal usage is illustated in the JBossSX wiki section: http://www.jboss.org/wiki/Wiki.jsp?page=UsingCustomPrincpalsWith View the original post : http://www.jboss.org/index.html?module=bbop=viewtopicp=3853914#3853914 Reply to the post : http://www.jboss.org/index.html?module=bbop=postingmode=replyp=3853914 --- This SF.Net email is sponsored by: Sybase ASE Linux Express Edition - download now for FREE LinuxWorld Reader's Choice Award Winner for best database on Linux. http://ads.osdn.com/?ad_id=5588alloc_id=12065op=click ___ JBoss-user mailing list [EMAIL PROTECTED] https://lists.sourceforge.net/lists/listinfo/jboss-user
[JBoss-user] [Security JAAS/JBoss] - Re: Custom LoginModule is rejected by jboss
http://www.jboss.org/index.html?module=bbop=viewtopict=54470 answers the question about struts and about request.isUserInRole I'm still hesitant to believe that the roles has to be attached to a group that is specifically called Roles If anybody could point to any JAAS/J2EE standards on this, I would very much appriciate. View the original post : http://www.jboss.org/index.html?module=bbop=viewtopicp=3853916#3853916 Reply to the post : http://www.jboss.org/index.html?module=bbop=postingmode=replyp=3853916 --- This SF.Net email is sponsored by: Sybase ASE Linux Express Edition - download now for FREE LinuxWorld Reader's Choice Award Winner for best database on Linux. http://ads.osdn.com/?ad_id=5588alloc_id=12065op=click ___ JBoss-user mailing list [EMAIL PROTECTED] https://lists.sourceforge.net/lists/listinfo/jboss-user
[JBoss-user] [Security JAAS/JBoss] - Re: Custom LoginModule is rejected by jboss
Thanks Scott, I only saw your reply after posting mine. Based on the reference, the way I read it, the requirement to specify roles Group roles = new SimpleGroup(Roles); is jboss specific. View the original post : http://www.jboss.org/index.html?module=bbop=viewtopicp=3853917#3853917 Reply to the post : http://www.jboss.org/index.html?module=bbop=postingmode=replyp=3853917 --- This SF.Net email is sponsored by: Sybase ASE Linux Express Edition - download now for FREE LinuxWorld Reader's Choice Award Winner for best database on Linux. http://ads.osdn.com/?ad_id=5588alloc_id=12065op=click ___ JBoss-user mailing list [EMAIL PROTECTED] https://lists.sourceforge.net/lists/listinfo/jboss-user
[JBoss-user] [Security JAAS/JBoss] - Re: Custom LoginModule is rejected by jboss
There is no standard that defines how to use a JAAS Subject for authorization prior to J2EE 1.4 so jboss defined a mechanism that uses a java.security.acl.Group named 'Roles' as the location for the declarative roles. J2EE 1.4 defines a new JACC permission based contract for specifying how to delegate the authorization checks. Support for this exists in jboss-4.0.x. View the original post : http://www.jboss.org/index.html?module=bbop=viewtopicp=3854001#3854001 Reply to the post : http://www.jboss.org/index.html?module=bbop=postingmode=replyp=3854001 --- This SF.Net email is sponsored by: Sybase ASE Linux Express Edition - download now for FREE LinuxWorld Reader's Choice Award Winner for best database on Linux. http://ads.osdn.com/?ad_id=5588alloc_id=12065op=click ___ JBoss-user mailing list [EMAIL PROTECTED] https://lists.sourceforge.net/lists/listinfo/jboss-user
[JBoss-user] [Security JAAS/JBoss] - Re: Custom LoginModule is rejected by jboss
Problem solved. I had to modify the Commit method of my login module as follows: TestGroup roles = new TestGroup(Roles); TestPrincipal user = new TestPrincipal(username); roles.addMember(new TestPrincipal(JBossAdmin)); subject.getPrincipals().add(user); subject.getPrincipals().add(roles); Was I blind that I've never seen the need for the first line? It seemd to me that all materials only stated to have the role added as a principal to the subject's principals. Is the above based on standard j2ee or this is jboss specific? View the original post : http://www.jboss.org/index.html?module=bbop=viewtopicp=3853771#3853771 Reply to the post : http://www.jboss.org/index.html?module=bbop=postingmode=replyp=3853771 --- This SF.Net email is sponsored by: Sybase ASE Linux Express Edition - download now for FREE LinuxWorld Reader's Choice Award Winner for best database on Linux. http://ads.osdn.com/?ad_id=5588alloc_id=12065op=click ___ JBoss-user mailing list [EMAIL PROTECTED] https://lists.sourceforge.net/lists/listinfo/jboss-user
