You guys should check out this article on using JAAS with Struts:
http://www.mooreds.com/jaas.html
I think you'll find point 2.3.2 interesting.
View the original post :
http://www.jboss.org/index.html?module=bb&op=viewtopic&p=3854399#3854399
Reply to the post :
http://www.jboss.org/index.html
I can confirm your troubles with JBoss 3.2.5 and Struts 1.2.4 - But I am not sure
whose fault it is. The problem is very clear: JBoss forgets the user principal after
the next http request.
I haven't found any way to resolve that issue except reauthentification for each
action. I have written m
Hi,
There are no calls clearing the SecurityAssosiation in my code between
LoginContext.login() and SecurityAssociation.getSubject(). I am not using any
RMIAdaptor. There might be something in the Struts framework code, but this seems
unlikely (using Action and RequestProcessor)
Could it be as
Hi Scott
Could you please show a little example for this?
Thanks
Martin
View the original post :
http://www.jboss.org/index.html?module=bb&op=viewtopic&p=3848534#3848534
Reply to the post :
http://www.jboss.org/index.html?module=bb&op=posting&mode=reply&p=3848534
--
Then something between the point of the LoginContext.login and the
SecurityAssociation.getSubject() showing null is clearing the SecurityAssociation. A
common source of this is trying to use the RMIAdaptor from jndi in the context of the
invocation. The RMIAdaptor cannot be used like this becaus