eefahs wrote :
|
| So what you are saying is that from an MDB, we cant access a secured EJB?
|
|
See this
http://wiki.jboss.org/wiki/SecurityExceptionWhenAccessingSecuredEJBFromAnMDB.
Also look at the ejb-jar.xml dtd which allows a run-as
http://java.sun.com/dtd/ejb-jar_2_0.dtd.
anonymous wrote : Also look at the ejb-jar.xml dtd which allows a run-as
http://java.sun.com/dtd/ejb-jar_2_0.dtd. You can use that on the MDB definition
in the ejb-jar.xml and specify the role name which has access to the secured
EJB.
Yes, that did it. Thanks Jai Kiran.
Solved my problem..
anonymous wrote : So what you are saying is that from an MDB, we cant access a
secured EJB
Bottom line is that to access your secured ejb, you need to do a jaas login.
My hunch is that as a part of your login process, calls a jms client, which
sends a message, which a MDS recieves
Hi ragav,
While starting up my java client, it will ask for a username and password and
entring the username and password, when the user enters the submit(login)
button, it will create LoginContext and will call logon and then try to call
the secured ejb and then will cal a unsecured ejb for
anonymous wrote : So aftre both these calls, server itself will create a jms
message for audit and it will put in a queue and an MDB will pick the message
and for processign this message MDB will try to call the secured EJB
JMS/MDB is asynchronousJMS/MDB systems are meant for distributed
Hi Ragav,
modifying our flow is not at all an option, we have our own reason for making
audit an asynchronous process... I think nobody will like to have an imapct on
thier SLA by using synchronous audit/log process.
So again, modifying our flow, is not at all an choice
So what you are
anonymous wrote : user - accessing secured ejb - internall calls
LoginModule.login() login successfull
|
| - accessiing unsecured ejb - successfull
|
| - accessing a unsecured ejb, which calls secured ejb - failes
Post the code that does this
View the original post :
Also I think here is where the problem lies
anonymous wrote : - accessing a unsecured ejb, which calls secured ejb - failes
Where is the jaas login done before you access a secured ejb ?
View the original post :
http://www.jboss.com/index.html?module=bbop=viewtopicp=4174332#4174332
Reply to
More details..
My application is devided into different subsystems and each subsystem is a
different jar.
and one of my jar is defined with a security domain and the initial call to
this subsystem triggered the login method and it was successfull and user
logged into the system.
And the same
Are you using a java client ?
How is this done ?
anonymous wrote : And the same user was accessing an ejb from another subsystem
Point is, if you using a java client then Authentication is per login. Which
means , you login from your java client, access the secured ejb, do your work
log out.
Hi ragav,
Yes I am using a java client, yes first the user will login to the system by
accessing the secured subsystem and after that he can access any other
subsystem without any authentication, that is my requirement.
But, after successfull login when the user trying to use a unsecured
Hi,
Thanks for the reply and Now I changed my LoginModule to remove the ejb call
and ti works perfectly . again few more clarifications will be helpfull
I have deployed my application as a folder, which contains multiple jar files.
and I have specified security-domain for only one jar that
Hi Ragav,
Thanks for the reply and Now I changed my LoginModule based on your reply. and
decided to go with a default role for all users.
And I have created a jar file for my loginmodule and copied it to
server\{myDomain}\lib folder and when I tried to run the client I am getting
the
Hi,
With some changes atlast the call reached my LoginModule. Thanks for your
help. But
How can I access an ejb which resides in another ear file from My LoginModule?
For validating my user I want to use an existing EJB method call.
EJB is deployed as an application and MyLoginModule jar
anonymous wrote : How can I access an ejb which resides in another ear file
from My LoginModule? For validating my user I want to use an existing EJB
method call.
Wouldn't that be a re-entrant call ? You are trying to secure a resource, but
as a part of the login, you are trying to access the
Hi,
Thank you very much for the response, I think I need more help..
Yes, I am using CallbackHandler.
I think I need to explain my requirement little bit more
In my application initially it comes with a login screen and after user enters
a username and password and presss login button
2 issues here. Lets take the first one. You will have to change your login
module to extend jboss AbstractServerLoginModule as follows :-
anonymous wrote : Here is my LoginModule
|
| final public class DbLoginModuleImpl implements LoginModule {
to
anonymous wrote : final public class
HI
Quick answers :- Since it is java client
(1) You would be using a callback handler on the client to connect to your Jaas
Module.
(2) Your CustomModule should be in a jar file under $HOME/server/default/lib
(3) The classpath in run.sh or run.bat of jboss should be changed to include
your jar
No Help?
I think I have to explain more..
I have an already running application in weblogic and whose username, passowrd
validation is done using jaas and all other role based autherisation checks are
done programaatically and i want to port the application to JBoss. But in
Jboss, it
19 matches
Mail list logo