4 Replies Latest reply on Apr 18, 2004 6:39 PM by spiritualmechanic

Servlet using a Jboss Session - Bean

josefduschinger Apr 17, 2004 12:09 PM

Hi,

i am using jboss3.2.3 with tomcat. I wrote a servlet, in which I want to use a JBoss - Session Bean.

I always get the Excption like:

EJBException:; nested exception is: javax.ejb.EJBException: checkSecurityAssociation; CausedByException is: Authentication exception, principal=null

The source code is:

public String execute(javax.servlet.http.HttpServletRequest request, javax.servlet.http.HttpServletResponse response, org.apache.velocity.context.Context pvContext)
{

try
{

SecurityAssociationHandler handler = new SecurityAssociationHandler();
Principal userPrincipal = new Principal()
{
public String getName()
{
return "georg";
}
};
System.out.println(userPrincipal.getName());

handler.setSecurityInfo(userPrincipal, "georg1");
LoginContext loginContext =
new LoginContext("EJBSecurityDomain", (CallbackHandler) handler);
loginContext.login();

Context jndiContext = getInitialContext();

Object ref = jndiContext.lookup("GeorgSQLHomeRemote");
GeorgSQLHomeRemote georgHome = (GeorgSQLHomeRemote)
PortableRemoteObject.narrow(ref,GeorgSQLHomeRemote.class);

GeorgSQLRemote georg = georgHome.create();

pvContext.put ("Meldung", "Huhu");

}
catch (Throwable t)
{
t.printStackTrace();
pvContext.put ("Meldung", t.getMessage());
}

return "userList.html";
}

static public Context getInitialContext() throws Exception
{
// jndi.properties contains InitialContext properties
Hashtable env = new Hashtable();
env.put(Context.INITIAL_CONTEXT_FACTORY, "org.jnp.interfaces.NamingContextFactory");
env.put(Context.OBJECT_FACTORIES, "org.jboss.naming:org.jnp.interfaces");
env.put(Context.PROVIDER_URL, "192.168.249.23:1099");

return new InitialContext(env);
}

My question, what have I to do, that the connection works?

Josef

1. Re: Servlet using a Jboss Session - Bean

spiritualmechanic Apr 17, 2004 4:13 PM (in response to josefduschinger)

Are you using Tomcat outside of JBoss, or with the Tomcat/JBoss bundle?
Actions
2. Re: Servlet using a Jboss Session - Bean

josefduschinger Apr 18, 2004 1:55 AM (in response to josefduschinger)

Hi,

Tomcat/JBoss bundle

Josef
Actions
3. Re: Servlet using a Jboss Session - Bean

ahardy66 Apr 18, 2004 4:01 PM (in response to josefduschinger)

Georg, I don't know what your code for the SecurityAssociationHandler or UserPrincipal does, but you don't say whether your user is logged in or whether you have set a security-domain in your jboss.xml.

If you have set a security-domain, then you must login with an authorized user to get past the security restrictions.

Adam
Actions
4. Re: Servlet using a Jboss Session - Bean

spiritualmechanic Apr 18, 2004 6:39 PM (in response to josefduschinger)

Also, if you want a non-null Principal from the web server, you'll need to secure your servlet/jsp. If you don't have it secured, it will come back as null, if I remember correctly. That's at least the way it works in Jetty, so it's probably pretty similar.

If you secure that, you can skip all of the SecurityAssociationHandler stuff.

Another thing is if you're already in the JBoss/Tomcat container, all you have to call is:

Context ctx = new InitialContext();

without passing in the hashtable.
Actions

Go to original post