Scott,
I sent you the security log by e-mail.
Thank you again,
Igor
View the original post :
http://www.jboss.com/index.html?module=bb&op=viewtopic&p=3961746#3961746
Reply to the post :
http://www.jboss.com/index.html?module=bb&op=posting&mode=reply&p=3961746
___
Show the trace level logging of the org.jboss.security category that
demonstrates what is happening. Q4 of the following shows the key categories:
http://wiki.jboss.org/wiki/Wiki.jsp?page=SecurityFAQ
View the original post :
http://www.jboss.com/index.html?module=bb&op=viewtopic&p=3961742#396174
Some additional information.
jboss-web.xml:
| java:/jaas/testdomain
|
>From login-config.xml:
|
|
| useFirstPass
| java:/DefaultDS
|
|
| useFirstPass
| java:/DefaultDS
|
|
|
Flushing code:
String domain = "testd
Thank you for your reply.
Unfortunately, I cannot get it work. I have cache disabled, I flush the cache,
but still roles remain the same. From the log I see that LoginModules (I use
custom LoginModule to populate roles group) are not called.
Igor
View the original post :
http://www.jboss.com
That is not correct. If you flush the cache the existing authentication is
revalidated which means reloading the Subject and its roles.
View the original post :
http://www.jboss.com/index.html?module=bb&op=viewtopic&p=3961556#3961556
Reply to the post :
http://www.jboss.com/index.html?module=b
Hello!
I understand that disabling or flushing cache doesn't help. It helps when user
logs in again, but doesn't help to update "Roles" group of the Subject on the
fly (while user is still logged in).
Nevertheless, is it possible to update user roles without need for user to log
out?
Best reg
