[JBoss-user] [Security & JAAS/JBoss] - Re: How to dynamically change security role without logging

Scott, One more note: I tested the approach of subclassing JBossSecurityMgrRealm as mentioned above. It works well. I have to recompile JBoss to make JBossGenericPrincipal a public class, along with making public a few of its methods. Would you please make this class public? I am using JBos

[JBoss-user] [Security & JAAS/JBoss] - Re: How to dynamically change security role without logging

Thanks for the quick response Scott. I am wondering if JBossGenericPrincipal can be made a public class. The security roles I have is stored in my callerPrincipal. I am experimenting subclassing JBossSecurityMgrRealm, and in the getCachedPrincpal method, return a subclass of JBossGenericPrinc

[JBoss-user] [Security & JAAS/JBoss] - How to dynamically change security role without logging out

Hi, I have a custom LoginModule derived from some sample code. There, I create a SimpleGroup, "Roles", to store security roles used by my web applications. This "Roles" is then set into the Subject's principal. I also have a group of Web applications that are hooked together with Single-Si

[JBoss-user] [Beginners Corner] - How do I generate a Java thread dump?

I am trying to get a thread dump of the JBoss VM on Linux. I tried kill -QUIT {jboss_pid} but nothing happens. This trick works for other JVM instances (WebLogic) but not my JBoss instance. Is there a configuration I am missing? Thanks, -- Rick View the original post : http://www.jboss.org

[JBoss-user] [Security & JAAS/JBoss] - Re: request.getUserPrincipal() returns org.jboss.security.Si

Works like a charm! Thanks! Sorry I should have found it in the Wiki before asking that question. -- Rick View the original post : http://www.jboss.org/index.html?module=bb&op=viewtopic&p=3855775#3855775 Reply to the post : http://www.jboss.org/index.html?module=bb&op=posting&mode=reply&p=38

[JBoss-user] [Security & JAAS/JBoss] - request.getUserPrincipal() returns org.jboss.security.Simple

Hi, I have a custom JAAS LoginModule, which returns my custom implementation Principal interface, say MyPrincipal. I also have a servlet filter configured to my application. Within my filter doFilter() method, when I call request.getUserPrinicipal(), it returns an object of class org.jboss.se

[JBoss-user] [Security & JAAS/JBoss] - Re: How do I turn off caching of user credential in JBoss 4.

Thanks! View the original post : http://www.jboss.org/index.html?module=bb&op=viewtopic&p=3850572#3850572 Reply to the post : http://www.jboss.org/index.html?module=bb&op=posting&mode=reply&p=3850572 --- This SF.net email is sponsored by: IT

[JBoss-user] [Security & JAAS/JBoss] - How do I turn off caching of user credential in JBoss 4.0?

(Or how do I invalidate the user credential cache?) I have a LoginModule, and I notice that JaasSecurityManager only calls my LoginModule for the first time. Subseqent authentication goes through the internal cache first. How do I disable this cache? Or how do I force the JaasSecurityManager t

[JBoss-user] [Security & JAAS/JBoss] - JBoss 4.0 security error

Hi, I installed JBoss 4.0. When I compiled and deployed my ear file, I got the following security exception: org.jboss.deployment.DeploymentException: Error in accessing application metadata: ; - nested throwable: (java.lang.SecurityException: org.jboss.deployment.EARDeployment is not trusted,

[JBoss-user] [HTTPD, Servlets & JSP] - How to logout application(s) using single-sign-on?

Hi, I am using JBoss 3.2.5 w/Tomcat 5.0.26. I enabled SSO for a group of web applications. I would like to have a logout page where I can logout and force subsequent access to any one of the applications to go to the login page. Is this possible? Thanks, -- Rick View the original post :