3 Replies Latest reply on Mar 24, 2005 5:52 PM by starksm64

principal=null even when unauthenticatedIdentity is set

mbeyer73 Mar 17, 2005 2:32 PM

Hello all!

I am using a UsernamePasswordLoginModule with JBoss 3.2.5.

Authentication works well BUT: some functionality should be available to public -- without needing someone to login. Although I have the unauthenticatedIdentity option set, accessing a Session Bean via JSP results in a "java.lang.SecurityException: Authentication exception, principal=null".

Am I missing something? Do I have to do a login with null values somehow?

Cheers,
Marcus

1. Re: principal=null even when unauthenticatedIdentity is set

starksm64 Mar 21, 2005 10:07 AM (in response to mbeyer73)

The JAAS Howto in this forum has an example of an unauthenticated servlet accessing a secured ejb.
Actions
2. Re: principal=null even when unauthenticatedIdentity is set

mbeyer73 Mar 23, 2005 9:22 AM (in response to mbeyer73)

Thank you! If I understand right, you use a LoginFilter as a workaround.

So JBoss ignores the unauthenticatedIdentity option, right?
Does this change with newer versions?

Cheers, Marcus
Actions
3. Re: principal=null even when unauthenticatedIdentity is set

starksm64 Mar 24, 2005 5:52 PM (in response to mbeyer73)

No, that is not right.
Actions

Go to original post