This problem happends only if first client doesn't call
LoginContext.logout().
vlk
-Original Message-
From: KRALIK Vladimmr [mailto:[EMAIL PROTECTED]]
Sent: 4. oktobra 2002 15:47
To: Jboss-Users (E-mail)
Subject: [JBoss-user] SRP client login problem
Hello all,
I've problem with second SRP standalone client login.
First it's OK.
WEBapp works fine.
What do I do bad ?
thanks
vlk
Environment : JDK 1.3.1 / W2K / JBoss 3.0.3 with Tomcat 4.1.12
Problem : First time after restart server is all OK.
Here is some TRACE-info :
2002-10-04 15:20:42,926 TRACE
[org.jboss.security.srp.SRPService] Cached SRP
session for user={username=aaa, sessionID=0} 2002-10-04
15:20:42,926 TRACE
[org.jboss.security.srp.SRPRemoteServer] verify, completed
{username=aaa,
sessionID=0} 2002-10-04 15:20:44,058 TRACE
[org.jboss.security.srp.jaas.SRPCacheLoginModule]
cacheJndiName=srp/AuthenticationCache 2002-10-04 15:20:44,058 TRACE
[org.jboss.security.srp.jaas.SRPCacheLoginModule] Found SRP cache
credential: org.jboss.security.srp.SRPServerSession@ed262 2002-10-04
15:20:44,058 TRACE
[org.jboss.security.srp.jaas.SRPCacheLoginModule] Login
succeeded 2002-10-04 15:20:44,068 TRACE
[org.jboss.security.auth.spi.DatabaseServerLoginModule] initialize
2002-10-04 15:20:44,068 TRACE
[org.jboss.security.auth.spi.DatabaseServerLoginModule]
DatabaseServerLoginModule, dsJndiName=java:/OracleDS
2002-10-04 15:20:44,068
TRACE [org.jboss.security.auth.spi.DatabaseServerLoginModule]
principalsQuery=select heslo from ajf_pouzivatel where
konto=? 2002-10-04
15:20:44,068 TRACE
[org.jboss.security.auth.spi.DatabaseServerLoginModule]
rolesQuery=select nazov,'Roles' from ajf_tomcat_realm where konto=?
2002-10-04 15:20:44,068 TRACE
[org.jboss.security.auth.spi.DatabaseServerLoginModule] login
2002-10-04
15:20:44,068 TRACE
[org.jboss.security.auth.spi.DatabaseServerLoginModule]
commit, loginOk=true 2002-10-04 15:20:44,859 TRACE
[org.jboss.security.plugins.JaasSecurityManager.jap] updateCache,
subject=Subject:
Principal: aaa
Principal: Roles
Public Credential: [B@3aabc1
When I run second-time the same client-program, jboss gives me
javax.security.auth.login.FailedLoginException: Password
Incorrect/Password
Required
And here is some TRACE-info :
2002-10-04 15:21:21,381 DEBUG
[org.jboss.security.srp.SRPService] Ignoring
SRP session due to existing session for user={username=aaa,
sessionID=0}
2002-10-04 15:21:21,381 TRACE [org.jboss.security.srp.SRPRemoteServer]
verify, completed {username=aaa, sessionID=0} 2002-10-04
15:21:21,572 TRACE
[org.jboss.security.plugins.JaasSecurityManager.jap] validateCache,
info=org.jboss.security.plugins.JaasSecurityManager$DomainInfo@25c99f
2002-10-04 15:21:21,572 TRACE
[org.jboss.security.srp.jaas.SRPCacheLoginModule]
cacheJndiName=srp/AuthenticationCache 2002-10-04 15:21:21,572 TRACE
[org.jboss.security.srp.jaas.SRPCacheLoginModule] Found SRP cache
credential: org.jboss.security.srp.SRPServerSession@ed262 2002-10-04
15:21:21,572 TRACE
[org.jboss.security.auth.spi.DatabaseServerLoginModule]
initialize 2002-10-04 15:21:21,572 TRACE
[org.jboss.security.auth.spi.DatabaseServerLoginModule]
DatabaseServerLoginModule, dsJndiName=java:/OracleDS
2002-10-04 15:21:21,572
TRACE [org.jboss.security.auth.spi.DatabaseServerLoginModule]
principalsQuery=select heslo from ajf_pouzivatel where
konto=? 2002-10-04
15:21:21,572 TRACE
[org.jboss.security.auth.spi.DatabaseServerLoginModule]
rolesQuery=select nazov,'Roles' from ajf_tomcat_realm where konto=?
2002-10-04 15:21:21,572 TRACE
[org.jboss.security.auth.spi.DatabaseServerLoginModule] login
2002-10-04
15:21:21,572 DEBUG
[org.jboss.security.auth.spi.DatabaseServerLoginModule]
Bad password for username=aaa 2002-10-04 15:21:21,572 TRACE
[org.jboss.security.auth.spi.DatabaseServerLoginModule] abort
2002-10-04
15:21:21,582 DEBUG
[org.jboss.security.plugins.JaasSecurityManager.jap]
Login failure javax.security.auth.login.FailedLoginException: Password
Incorrect/Password Required at
org.jboss.security.auth.spi.UsernamePasswordLoginModule.login(
UsernamePasswo
rdLoginModule.java:147)
In login-config.xml I've :
application-policy name=jap
authentication
login-module
code=org.jboss.security.srp.jaas.SRPCacheLoginModule
flag = optional
module-option name =
cacheJndiNamesrp/AuthenticationCache/module-option
module-option name =
password-stackinguseFirstPass/module-option
/login-module
login-module
code=org.jboss.security.auth.spi.DatabaseServerLoginModule
flag = required
module-option name =
dsJndiNamejava:/OracleDS/module-option
module-option name = principalsQueryselect heslo from
ajf_pouzivatel where konto=?/module-option