2 Replies Latest reply on May 8, 2003 10:46 PM by talgolan

    JassSecurityManagerService mbean's DefaultCacheTimeout prope

    osenhaji
    osenhaji May 5, 2003 12:02 PM

      Hello,

      Jboss 3.0.7

      I am using the DatabaseServerLoginModule. I am trying to configure out the JaasSecurityManagerService mbean's DefaultCacheTimeout property to force authentication to occur every time (the property is set to 0). When I made a change in the UserRoles table (a user's role is dropped) nothing seems to happen with the SecurityManager. The user continue to access to an EJB method.

      How can I force the SecurityManager to be synchronized with the security information store?

      Regards,

      • 3132 Views
      • Tags:
        • 1. Re: JassSecurityManagerService mbean's DefaultCacheTimeout p
          juhalindfors May 7, 2003 8:39 AM (in response to osenhaji)

          try the flushAuthenticationCache() operation

            • Actions
          • 2. Re: JassSecurityManagerService mbean's DefaultCacheTimeout p
            talgolan
            talgolan May 8, 2003 10:46 PM (in response to osenhaji)

            NOTE: This assumes that you are running the latest version of JBoss. I have no idea if this answer will apply to older versions.

            Check out the jboss-service.xml file. You will find this in <JBOSS_HOME>/server/default/conf.

            Inside this file you will find the following...

            <!-- JAAS security manager and realm mapping -->


            org.jboss.security.plugins.JaasSecurityManager



            If you add the following attribute JBoss will perform no authentication caching.

            0

            The complete entry should be as follows...

            <!-- JAAS security manager and realm mapping -->


            org.jboss.security.plugins.JaasSecurityManager

            0


            HTH.

            Peace,

            Tal

              • Actions