I finally understood, i solved my last problem by building a jar with my
implementation of CertificatePrincipal and placing in
$jboss/server/default/lib...
View the original post :
http://www.jboss.com/index.html?module=bb&op=viewtopic&p=3909227#3909227
Reply to the post :
http://www.jboss.co
I made an implementation of CertificatePrincipal called NexusDNMapping, but
where i can place this class?
View the original post :
http://www.jboss.com/index.html?module=bb&op=viewtopic&p=3909220#3909220
Reply to the post :
http://www.jboss.com/index.html?module=bb&op=posting&mode=reply&p=3909
I'm completly lost... What can i do?
View the original post :
http://www.jboss.com/index.html?module=bb&op=viewtopic&p=3908668#3908668
Reply to the post :
http://www.jboss.com/index.html?module=bb&op=posting&mode=reply&p=3908668
---
This SF.
The DN is stored in a table in my database. This is the company DN that i use
for user authorization after user authentication with user certificate. In my
case the user share the same roles as company has in the system, then, there's
no need store the user DN in my database.
View the original
The source of this topic is at:
http://www.jboss.com/index.html?module=bb&op=viewtopic&t=69527
But at this moment the CertifcatePrincipal has an array of certificates as
parameter but i need to pass the certificate DN as parameter, take a look in
the topic above to know the reasons.
Thanks for
The source of this topic is at:
http://www.jboss.com/index.html?module=bb&op=viewtopic&t=69527
But at this moment the CertifcatePrincipal has an array of certificates as
parameters but i need to pass the certificate DN as parameters, take a look in
the topic above to know the reasons.
Thanks f
How can i reopen this issue in JIRA?
View the original post :
http://www.jboss.com/index.html?module=bb&op=viewtopic&p=3908081#3908081
Reply to the post :
http://www.jboss.com/index.html?module=bb&op=posting&mode=reply&p=3908081
---
This SF.
Please i need some attention in this problem.
View the original post :
http://www.jboss.com/index.html?module=bb&op=viewtopic&p=3907390#3907390
Reply to the post :
http://www.jboss.com/index.html?module=bb&op=posting&mode=reply&p=3907390
---
I added a new comment in http://jira.jboss.com/jira/browse/JBAS-2278, please
check it.
View the original post :
http://www.jboss.com/index.html?module=bb&op=viewtopic&p=3907127#3907127
Reply to the post :
http://www.jboss.com/index.html?module=bb&op=posting&mode=reply&p=3907127
-
Well, i'll download the sources to do the proper changes in BaseCertLoginModule.
In order to derive the Principal i do this:
setIdentity(SimplePrincipal(rs.getString(1)));
where rs.getString(1) is the value of company certificate (DN) in users table
of JAAS.
If fact i mean employee instead of
This is really necessary for me.
View the original post :
http://www.jboss.com/index.html?module=bb&op=viewtopic&p=3899747#3899747
Reply to the post :
http://www.jboss.com/index.html?module=bb&op=posting&mode=reply&p=3899747
---
This SF.Net
Sometimes i log in the system with a client certificate of the owner of one
company that has the access to my system, once this user is validated i only
need to use the identity of the company by replacing the identity of this user
by company identity, for this i need the setIdentity in BaseCert
Solved, i added anonimo as login module option.
View the original post :
http://www.jboss.com/index.html?module=bb&op=viewtopic&p=3894700#3894700
Reply to the post :
http://www.jboss.com/index.html?module=bb&op=posting&mode=reply&p=3894700
I need a way to enable unidentified user access my webapplication and then
register this user in my system using info in your certificate.
View the original post :
http://www.jboss.com/index.html?module=bb&op=viewtopic&p=3894690#3894690
Reply to the post :
http://www.jboss.com/index.html?modul
I need to know the best way to extract the info about unauthenticatedIdentity
using DatabaseCertLoginModule and then create a user in the JAAS...
What i have to do? Create a login module that extends from
DatabaseCertLoginModule and override which method?
View the original post :
http://www.jbo
I found the solution by simple signing both server and client certificates and
storing the ca certificate into server truststore.
View the original post :
http://www.jboss.com/index.html?module=bb&op=viewtopic&p=3894559#3894559
Reply to the post :
http://www.jboss.com/index.html?module=bb&op=p
"soussou" wrote : Hi;
|
| I think that I am not the first people to realize a authentication module
using jaas api.
| If you have any information for that, I'am very interested
| I use Jboss and I would like to implement a jaas authentication module with
a Oracle database (login + pas
So i need to import into truststore the server.cer file if i self sign client
certs?
View the original post :
http://www.jboss.org/index.html?module=bb&op=viewtopic&p=3883490#3883490
Reply to the post :
http://www.jboss.org/index.html?module=bb&op=posting&mode=reply&p=3883490
---
Please i need some orientation in this part.
View the original post :
http://www.jboss.org/index.html?module=bb&op=viewtopic&p=3883433#3883433
Reply to the post :
http://www.jboss.org/index.html?module=bb&op=posting&mode=reply&p=3883433
---
http://www.jboss.org/wiki/Wiki.jsp?page=SSLSetup
View the original post :
http://www.jboss.org/index.html?module=bb&op=viewtopic&p=3883163#3883163
Reply to the post :
http://www.jboss.org/index.html?module=bb&op=posting&mode=reply&p=3883163
Any tips?
View the original post :
http://www.jboss.org/index.html?module=bb&op=viewtopic&p=3882709#3882709
Reply to the post :
http://www.jboss.org/index.html?module=bb&op=posting&mode=reply&p=3882709
---
SF.Net email is sponsored by: Disco
"nothingman" wrote : "[EMAIL PROTECTED]" wrote : See the verifier attribute of
BaseCertLoginModule:
| |
| | http://wiki.jboss.org/wiki/Wiki.jsp?page=BaseCertLoginModule
| |
| Thanx I'll try today.
|
| --
| Nothingman
This works for you?
View the original post :
http://ww
Fixed, the correct is DatabaseCertLoginModule instead of BaseCertLoginModule +
DatabaseServerLoginModule...
View the original post :
http://www.jboss.org/index.html?module=bb&op=viewtopic&p=3882252#3882252
Reply to the post :
http://www.jboss.org/index.html?module=bb&op=posting&mode=reply&p=38
I tried to use DatabaseCertLoginModule with AnyCertVerifier option and i still
need to use a truststore in jbossweb server.xml, this is correct? If yes i
still need to import the client certificates in truststore and this is a
problem to me since i create the users dynamically...
View the origi
Fixed, the correct is DatabaseCertLoginModule instead of BaseCertLoginModule +
DatabaseServerLoginModule...
View the original post :
http://www.jboss.org/index.html?module=bb&op=viewtopic&p=3882253#3882253
Reply to the post :
http://www.jboss.org/index.html?module=bb&op=posting&mode=reply&p=38
"nothingman" wrote : "rpa_rio" wrote : Have you followed the topics: "2 -
Client authentication" and "2 - Client authentication with self-signed server
cert" to make work as you need?
| |
| Yes but I really cannot have the client certificate on t
My client certificate has the username in CN field, but when i try to access my
webapp i'm getting a "Cannot authenticate with the provided credentials" error,
i need to create a login module that works with a DatabaseServerLoginModule or
there's another way?
Please somebody help me, i need this
I updated to jboss 4.0.2 and the message in the second post dissapeared, but
the message in fifth post still appears. I'm using the AnyCertVerifier but i
still need to import the client certificate in truststore.
View the original post :
http://www.jboss.org/index.html?module=bb&op=viewtopic&p=
This is my login-config.xml
|
|
|
| useFirstPass
| java:/jaas/NexusAcesso
| org.jboss.security.auth.certs.AnyCertVerifier
|
|
| java:/NexusDS
|
I'm using JBoss 4.0.1sp1
View the original post :
http://www.jboss.org/index.html?module=bb&op=viewtopic&p=3882023#3882023
Reply to the post :
http://www.jboss.org/index.html?module=bb&op=posting&mode=reply&p=3882023
---
SF.Net email is spon
Actually tomcat show this error in the browser: 'Cannot authenticate with the
provided credentials'.
View the original post :
http://www.jboss.org/index.html?module=bb&op=viewtopic&p=3882022#3882022
Reply to the post :
http://www.jboss.org/index.html?module=bb&op=posting&mode=reply&p=3882022
I checked this too:
http://www.jboss.org/wiki/Wiki.jsp?page=UsingCustomPrincpalsWith,
but i have a lot of users with diferent passwords and in the client certificate
i'll only have the username (or i can have password too?). How can i set the
password to login sucessfully.
Please, excuse-me, i'm
Maybe i need to write my own LoginModule or i'm wrong? I only need to verify
and extract the username to authenticate in JBoss...
View the original post :
http://www.jboss.org/index.html?module=bb&op=viewtopic&p=3882015#3882015
Reply to the post :
http://www.jboss.org/index.html?module=bb&op=p
I followed all steps in http://www.jboss.org/wiki/Wiki.jsp?page=SSLSetup.
Here's the JBoss messages:
2005-06-18 11:08:36,572 DEBUG [org.jboss.security.auth.spi.BaseCertLoginModule]
securityDomain=java:/jaas/NexusAcesso
2005-06-18 11:08:36,573 DEBUG [org.jboss.security.auth.spi.BaseCertLoginModul
How AnyVerifier works? I need to store the username in CN field of my cert?
View the original post :
http://www.jboss.org/index.html?module=bb&op=viewtopic&p=3882011#3882011
Reply to the post :
http://www.jboss.org/index.html?module=bb&op=posting&mode=reply&p=3882011
-
Thanks a lot!
View the original post :
http://www.jboss.org/index.html?module=bb&op=viewtopic&p=3882008#3882008
Reply to the post :
http://www.jboss.org/index.html?module=bb&op=posting&mode=reply&p=3882008
---
SF.Net email is sponsored by: D
Sorry, a bad_certificate message...
View the original post :
http://www.jboss.org/index.html?module=bb&op=viewtopic&p=3881964#3881964
Reply to the post :
http://www.jboss.org/index.html?module=bb&op=posting&mode=reply&p=3881964
---
SF.Net em
I run the ReadHttpsURL2 with the arguments:
-Djavax.net.ssl.trustStore=nexus_client.truststore
-Djavax.net.ssl.trustStorePassword=nexusx acme/ReadHttpsURL2
https://rogerio.dyndns.org:8443 and the i got the jmx-console page, but when i
try to access the url https://rogerio.dyndns.org:8443/eAIDF
I got this in STDOUT before the "SSL Error getting client Certs":
2005-06-17 12:45:01,601 INFO [STDOUT] *** Certificate chain
2005-06-17 12:45:01,601 INFO [STDOUT] ***
2005-06-17 12:45:01,601 INFO [STDOUT] %% Invalidated: [Session-1,
TLS_DHE_RSA_WITH_AES_128_CBC_SHA]
2005-06-17 12:45:01,601 I
I followed the topic: "2 - Client authentication", but now i'm getting a "SSL
Error getting client Certs" when i try to access my webapp using Firefox.
View the original post :
http://www.jboss.org/index.html?module=bb&op=viewtopic&p=3881952#3881952
Reply to the post :
http://www.jboss.org/ind
If i'm no wrong is request.isUserInRole('role')
View the original post :
http://www.jboss.org/index.html?module=bb&op=viewtopic&p=3881942#3881942
Reply to the post :
http://www.jboss.org/index.html?module=bb&op=posting&mode=reply&p=3881942
-
"nothingman" wrote :
| Yes but I really cannot have the client certificate on the server. We
already have a repository with all the users data (name, surnamane, uid, pwd,
social security number) but we don't have the subject of the certificate in the
db. We don't want to use an applet to read
rpolisetty,
put Mysql-connector-java-3.1.7-bin.jar in $jboss\server\\lib directory and
restart JBOSS.
View the original post :
http://www.jboss.org/index.html?module=bb&op=viewtopic&p=3881849#3881849
Reply to the post :
http://www.jboss.org/index.html?module=bb&op=posting&mode=reply&p=38
Creating a DatabaseServerLoginModule solve your problem karpra80.
View the original post :
http://www.jboss.org/index.html?module=bb&op=viewtopic&p=3881848#3881848
Reply to the post :
http://www.jboss.org/index.html?module=bb&op=posting&mode=reply&p=3881848
---
Have you found the way to do it nothingman?
View the original post :
http://www.jboss.org/index.html?module=bb&op=viewtopic&p=3881842#3881842
Reply to the post :
http://www.jboss.org/index.html?module=bb&op=posting&mode=reply&p=3881842
---
S
I can't send jboss-service.xml part, i can send to you by e-mail.
View the original post :
http://www.jboss.org/index.html?module=bb&op=viewtopic&p=3881841#3881841
Reply to the post :
http://www.jboss.org/index.html?module=bb&op=posting&mode=reply&p=3881841
---
jboss-service.xml part:
META-INF/login-config.xml
jboss.security:service=XMLLoginConfig
jboss.security:service=JaasSecurityManager
View the original post :
http://www.jboss.org/index.html?module=bb&op=viewtopic&p=3881840#3881840
Repl
You need to add something like this to your login-config.xml:
java:/NexusDS
SELECT senha FROM
usuario WHERE usuario = ?
SELECT papel, 'Roles'
FROM papelusuario WHERE usuario = ?
Can i use the same securutyDomain for FORM authentication +
DatabaseServerLoginModule and CLIENT-CERT + same DatabaseServerLoginModule?
View the original post :
http://www.jboss.org/index.html?module=bb&op=viewtopic&p=3881834#3881834
Reply to the post :
http://www.jboss.org/index.html?module=b
Have you followed the topics: "2 - Client authentication" and "2 - Client
authentication with self-signed server cert" to make work as you need?
I'm in a very similar situation, because i have a webapp using a FORM
authentication method and now i need to use CLIENT-CERT to perform
authenticatio
"nothingman" wrote : Hi, I've read the ssl how-to
http://www.jboss.org/wiki/Wiki.jsp?page=SSLSetup and it seams that, in order to
do client authentication, you need to import all the clients certificates on
the server. Is it correct ?
|
| In our environment we already have users data and cr
A lot! Thanks!
View the original post :
http://www.jboss.org/index.html?module=bb&op=viewtopic&p=3881634#3881634
Reply to the post :
http://www.jboss.org/index.html?module=bb&op=posting&mode=reply&p=3881634
---
SF.Net email is sponsored by:
"[EMAIL PROTECTED]" wrote : Hi guys !
|
| I had this problem. It 's that you must understand the way to think when
you describe your relations.
|
| Here is something that will help you :
|
| =
|
|
| Company-Division
|
"[EMAIL PROTECTED]" wrote : I'm running:
| - JBoss 3.2.3
| - Xdoclet 1.2.1
| - MySQL 4.0.21
| - Linux RedHat 9
|
| I have what seems to be a rather classic data model:
|
| Items:
| - itemId
| - price
| - cost
| - size
| - productId
|
| Products:
I have a Firmware bean with a compound primary key, this bean has a relation to
Model bean that has a compound primary key too, like this:
Firmware
version (PK)
model (PK)
Model
code (PK)
manufacturer (PK)
How can i set a relation between Firmware and Model by only using
Firmware.model as fore
I need this too...
View the original post :
http://www.jboss.org/index.html?module=bb&op=viewtopic&p=3881313#3881313
Reply to the post :
http://www.jboss.org/index.html?module=bb&op=posting&mode=reply&p=3881313
---
This SF.Net email is spons
I found the solution, i created a SessionBean and put all PostgreSQL specific
code there to store the file.
View the original post :
http://www.jboss.org/index.html?module=bb&op=viewtopic&p=3881186#3881186
Reply to the post :
http://www.jboss.org/index.html?module=bb&op=posting&mode=reply&p=38
Hi,
I need to store a big file in my postgresql table using my entity bean deployed
in JBOSS, what's the best way? When i try to use oid the driver says
"expression of type bytea", and when i use bytea as collumn type the driver
says "expression of type oid".
What can i do?
Thanks for any answ
policy tag! finally!
View the original post :
http://www.jboss.org/index.html?module=bb&op=viewtopic&p=3879682#3879682
Reply to the post :
http://www.jboss.org/index.html?module=bb&op=posting&mode=reply&p=3879682
---
This SF.Net email is spo
tag! before and after tag!
View the original post :
http://www.jboss.org/index.html?module=bb&op=viewtopic&p=3879681#3879681
Reply to the post :
http://www.jboss.org/index.html?module=bb&op=posting&mode=reply&p=3879681
---
This SF.Net emai
The tag...
View the original post :
http://www.jboss.org/index.html?module=bb&op=viewtopic&p=3879680#3879680
Reply to the post :
http://www.jboss.org/index.html?module=bb&op=posting&mode=reply&p=3879680
---
This SF.Net email is sponsored by
"rpa_rio" wrote : And this is my jboss-service.xml:
|
|
|
| META-INF/login-config.xml
|
| jboss.security:service=XMLLoginConfig
|
|
| jboss.security:service=JaasSecurityManager
|
|
|
|
|
| b
"rpa_rio" wrote : I created a app.sar file with login-config.xml and
jboss-service.xml, but now i'm getting host not found on port 8443 when i try
to access my webapp that uses JAAS, somebody can help me?
I got it working, i was using
CONFIDENTIAL and i changed to
NONE
View th
And this is my jboss-service.xml:
META-INF/login-config.xml
jboss.security:service=XMLLoginConfig
jboss.security:service=JaasSecurityManager
both (login-config.xml and jboss-service.xml) are packaged in eAIDF.sar, and
when i deploy
This is my login-config.xml:
java:/NexusDS
SELECT senha FROM
usuarios WHERE usuario = ?
SELECT papel, 'Roles' FROM
papeisusuarios WHERE usuario = ?
convidado
View the original post :
http://www.jboss.org/index
Sorry skidvd, i created a topic for my problem:
http://www.jboss.org/index.html?module=bb&op=viewtopic&p=3879642#3879642
i really need your help, sorry again.
View the original post :
http://www.jboss.org/index.html?module=bb&op=viewtopic&p=3879644#3879644
Reply to the post :
http://www.jboss.
I created a app.sar file with login-config.xml and jboss-service.xml, but now
i'm getting host not found on port 8443 when i try to access my webapp that
uses JAAS, somebody can help me?
View the original post :
http://www.jboss.org/index.html?module=bb&op=viewtopic&p=3879642#3879642
Reply to
Can i put login-config.xml inside myapp.sar or i need to add entries to
login-config.xml that exist in $jboss/server/defaul/conf directory?
View the original post :
http://www.jboss.org/index.html?module=bb&op=viewtopic&p=3879632#3879632
Reply to the post :
http://www.jboss.org/index.html?modu
I need to do the same thing here, can you send to me your login-config.xml and
the other files to undertand better the JAAS configuration under JBOSS?
View the original post :
http://www.jboss.org/index.html?module=bb&op=viewtopic&p=3879620#3879620
Reply to the post :
http://www.jboss.org/inde
69 matches
Mail list logo
