Thread java.lang.IllegalStateException: Security Context is null
java.lang.IllegalStateException: Security Context is nullHi, I'm getting the following error when I was trying to migrate my jboss from 4.0.5 to 5.1. I've a custom LDAP login module. I've noticed in the log warning saying, "You are using deprecated api, please use s...
Thread JaasSecurityDomain MBean reloadKeyAndTrustStore not working as expected
JaasSecurityDomain MBean reloadKeyAndTrustStore not working as expectedAt my site an incoming SSL connection is succesfully created on JBoss 5.1.0 (Tomcat). That works OK. Afterwards the certificate used is removed from the truststore. After that(surprisingly) a new connection can ...
Trust Association Interceptor in JBossHi, I need to know if there is any functionality in JBoss similar to IBM WAS's Trust Association Interceptor. We need to implement the same fuctionality in the design of portal running on JBoss. Pl. p...
Integrating Active Directory and JBossHi, I am adding a new enterprise app running on JBoss AS 7 to my corporate network which is Windows based and uses Active Directory for authentication. Once a user logs into the windows domain, they shou...
sharing credentials among multiple threadsI'm working with the CallerIdentityLoginModule to passthrough the caller credentials to the database and having some difficulty when the database is hit on another thread. The call sequence goes as follows: ...
Vault managementHi all, the server/host level is currently not managable over e.g. DMR. It would make sence to have such a possibility e.g. for refreshing the vault's state by reloading keys from ENC and shared.dat
AS7: Vault element not fully written backDmitri, I am going to use this discussion thread on how I plan to test what you reported in https://issues.jboss.org/browse/AS7-3102 I am going to start with a web application with a single servlet that has th...
Thread JaasAuthenticationProvider and AuthorityGranter
JaasAuthenticationProvider and AuthorityGranterI'm trying to get JasperServer to run in JBoss using my JAAS implementation. I can get the authentication to work, but I'm having a problem with the AuthorityGranter bean in my applicationContext-security.xml file. H...
PicketBox, jBoss SSO or ??Hi, We are looking at implementing the SAML 2.0 specification as the SSO solution for a company. But we are not sure what jBoss product to use - the jBoss SSO is apparently dead (or?) and what about PicketLink...
Principal lost in @TimeoutHi, I have a singleton session bean in JBoss AS 6.10. There's a method A that schedules a timer via the timer service. When this method is called via a user that is authenticated in the web module, the...
Thread When does @RunAs cause a login module to be consulted?
When does @RunAs cause a login module to be consulted?In JBoss AS 6.10 I have annotated a Servlet and MDB with an @RunAS annotation and make a call to a protected session bean (protected via @SecurityDomain or a domain specified in jboss.xml) AND I have a login-module co...
Thread Web SSO between Domino Server and JBoss AS 6.1 (LTPA token)
Web SSO between Domino Server and JBoss AS 6.1 (LTPA token)Hi, I would like to have some feedback on implementing Web SSO between a Domino Server and a JBOSS AS 6.1. Has anyone ever designed this architecture before in a project ? Is it possible to handle LTPA token w...
Thread Is it possible to add Login Modules programmatically
Is it possible to add Login Modules programmaticallyI have been searching for information about how you can add LoginModules programmatically to an running instance of PicketBox, but have found nothing - so have come to the conlusion that it is not possible. Can anyone...
Thread Two-factor authentication - client X.509 cert plus username+password
Two-factor authentication - client X.509 cert plus username+passwordI am developing a RESTeasy application in JBoss 6.0 AS Final. I have successfully configured and tested one-factor authentication using either BaseCertLoginModule (client X.509 certificates) or DatabaseServerLoginModu...
Thread DatabaseLoginModule execute code when correct login is done
DatabaseLoginModule execute code when correct login is doneHello everyone, I'm new at using JASS with JEE and of course Picketbox, that's why I wanted to ask how could I execute code, when a user login's correctly to my web application. I'm using JBOSS AS 7 with the DatabaseL...
Kerberos application server authenticationHello: I'm goin to installed Jboss Negoiation for silent authentication by followed the Jboss Negoiation user guide.My Jboss is not running on a machine joined the windows domain, it is running in a standalone...
Thread How to migrate custom security configuration from JBoss 4.x to AS 7
How to migrate custom security configuration from JBoss 4.x to AS 7Hello, i've to migrate our custom security configuration with our custom login modules to AS 7. In JBoss 4.0.3 SP1 we have deployed our login modules in a SAR archive with following structure META-INF...