Thanks for the details.
I followed the steps as mentioned, but i am getting the following error.
2006-11-22 14:28:40,277 DEBUG
[org.jboss.security.plugins.JaasSecurityManagerService] Added portal, [EMAIL
PROTECTED] to map
2006-11-22 14:28:40,293 DEBUG
When I access the portal I get the above error,
But when I access my webapp it gives the follwoing error
java.io.IOException: No properties file: users.properties or defaults:
defaultUsers.properties found
at org.jboss.security.auth.spi.Util.loadProperties(Util.java:313)
at
About the bad password. Its because the portal encrypts them before they hit
the DB. Cut and paste the password from the db table and it will work. I have
yet to figure out how to have JAAS do this by itself but I hope to figure that
out before the end of the day.
Any tips from anyone on
When you access the portal and get the properties file errors, that seems like
you didnt tell the portal to use DBLoginModule. I had to specifally not put my
login-config.xml in the portlets war. But rather in the
portals/conf/login-config.xml. I had the same error as u until i did that.
for the encryption issue. this thread solves it. just add 2 elements to
login-config.xml and your done.
http://www.jboss.com/index.html?module=bbop=viewtopicp=3987954#3987954
View the original post :
http://www.jboss.com/index.html?module=bbop=viewtopicp=3987955#3987955
Reply to the post :
Hi bmcgovern
Did u use JBOSS SSO for the SSO to work. I tried to follow the things you have
mentioned, but ended up that none of the URL's were working and neither could
see the logs.
Please help me how did u achieve and is there anything that i have to download.
I want to have an SSO to an
Thanvi -- Im happy to help. Everythign I used came with the portal and is part
of the jaas spec so you dont need to download anything
Im using jboss bundled portal and app server. App server v 4.0.4GA and portal
2.4.
Before you start you need to figure out how you are going to authenticate.
Ok I got a little farther. Hopefully someone can help now that i've added more
details. My goal is to set up DB Authentication.
I get the ugly login box popping up as you'd expect but at first it was
throwing this exception, missing a few user and role properties files, which I
added and
Hello bmcgovern,
i only can answer your first question.
For logging security issues, add the following code to your
server/conf/log4j.xml:
!-- Category for JBossSecurity --
maybe you must set the console appender to level debug:
another try...
first code snip:
|!-- Category for JBossSecurity --
|category name=org.jboss.security
| priority value=DEBUG/
|/category
|category name=org.jboss.web.tomcat.security
| priority value=DEBUG/
|/category
second snip:
Thanks Kosmi. Your post didnt come through, but i got it by viewing source.
Now i get a new message, basically saying the password is wrong. however.. Its
not.
Does jaas authentication mandate some kind of standard encryption in stored DB
passwords? Im 100% sure that my User/ pass combo
Hello bmcgovern,
your second question is answered in your errormessage:
13:58:50,015 ERROR [UsersRolesLoginModule]
A UserRolesLoginModule sends the message, but
you defined the
login-module code = org.jboss.security.auth.spi.DatabaseServerLoginModule
|
in ??/web inf/login-config
If you
Kosmi,
Thanks for the help. I think, as it turns out, the error described:
13:58:50,015 ERROR [UsersRolesLoginModule]
was due to my login-config.xml being deployed in my application war WAS NOT
CORRECT. I had to remove that file and place the application-policy
definition inside of the
I got it working, the problem ended up being the sql i was using for the roles
Query. My database (the jboss portal) db. Doesn't have a schema that directly
matches the way the query has to be shaped.
By looking at the source of DatabaseServerLoginModule.java I was able to figure
out what it
First you need to enable the single sign on in Tomcat then they will be
authenticated in both your webapp and portal.
Then it depends how you plan to work on the authorization. If roles are already
defined or if you let JBoss Portal manage the roles.
View the original post :
Thanks. Gonna read up some docs on how to do that. Anyone else have info,
since im doing this the first time, is appreciated.
View the original post :
http://www.jboss.com/index.html?module=bbop=viewtopicp=3984950#3984950
Reply to the post :
The JBoss Wiki is your friend ;)
http://wiki.jboss.org/wiki/Wiki.jsp?page=SingleSignOn
View the original post :
http://www.jboss.com/index.html?module=bbop=viewtopicp=3984955#3984955
Reply to the post :
http://www.jboss.com/index.html?module=bbop=postingmode=replyp=3984955
Please excuse the noobish questions as I beat this topic to death.
I put in the valve listener in tomcat and thats fine. But where im stuck is
how do I now syncronize the different apps on my virt host? SHouldnt there be
some changes im making to the code of each that says 'use the valve'
I made the assumption that you were using JAAS to authenticate in your webapp.
If you use your own authentication it is less straightforward
View the original post :
http://www.jboss.com/index.html?module=bbop=viewtopicp=3984981#3984981
Reply to the post :
Read up on jaas a little bit. Unfortunately im getting confused. Ashamed to
say I need a serious hand holding here. I found a pretty easy to follow read
on Federated SSO http://labs.jboss.com/portal/jboo/?prjlist=false but that
appears to be a separate download and not included with the
bmcgovern-
The JBoss Federated SSO is a new project at JBoss under the JBoss Security
umbrella of technologies. It is for enabling Single Sign On between wep apps
and portals scattered on different physical machines even located in different
web domains.
The user forum for this project is
21 matches
Mail list logo
