User 'null' in Jetty
tom Jan 8, 2003 9:41 AMHi,
I am trying to port an Struts - web app from Resin/Jboss 3.0.2 to JBoss 3.0.2 / Jetty (integrated).
The app uses Form-based login to access a welcome page and then accesses several EJBs via some Struts Actions. Login is done via JBoss / JAAS login-conf, using two modules with 'sufficient' flag:
<application-policy name = "blah-security">
<login-module code="org.jboss.security.auth.spi.DatabaseServerLoginModule"
flag="sufficient">
<module-option name="dsJndiName">java:/OracleDS</module-option>
<module-option name="principalsQuery">SELECT ...</module-option>
<module-option name="rolesQuery">SELECT ...</module-option>
</login-module>
<login-module code="org.jboss.security.auth.spi.UsersRolesLoginModule"
flag = "sufficient" />
</application-policy>
web.xml looks like this:
<security-constraint>
<web-resource-collection>
<web-resource-name>Adminconsole</web-resource-name>
Adminconsole
<url-pattern>/content/*</url-pattern>
</web-resource-collection>
<auth-constraint>
Registered Admins
<role-name>common.SuperAdmin</role-name>
</auth-constraint>
<user-data-constraint>
<transport-guarantee>NONE</transport-guarantee>
</user-data-constraint>
</security-constraint>
<!--
<login-config>
<auth-method>FORM</auth-method>
<realm-name>Admin area</realm-name>
<form-login-config>
<form-login-page>/login.jsp</form-login-page>
<form-error-page>/loginerr.jsp</form-error-page>
</form-login-config>
</login-config>
-->
<login-config>
<auth-method>BASIC</auth-method>
<realm-name>Admin area</realm-name>
</login-config>
<security-role>
<role-name>common.SuperAdmin</role-name>
</security-role>
Struts conf (example):
Results:
- Login works (form based and basic)
- JSPs display user / Principal correct if I use request.getRemoteUser / request.getPrincipal
Every other access (EJBs, Struts Actions, Servlets) does not work
Message (for Struts actions) :
2003-01-08 15:36:12,099 DEBUG [org.apache.struts.action.RequestProcessor] User
'null' does not have any required role, denying access
Seems the user disapears.
Any ideas?