2 Replies Latest reply on Aug 30, 2005 7:15 AM by tremalnaik

multiple users login

tremalnaik Aug 23, 2005 7:08 AM

Hi, I decided to let multiple logins for the same user. This is because the client asked me to define a 'administrator' account which many users may access from different Clients in the Internet. Different users whith the same name are logged in using different sessions.
I noticed that if a user fails to logon , the

SecurityAssociationActions.getAuthException()

always returns an exception for all the different sessions (I'm using the org.jboss.web.tomcat.security.FormAuthValve to intercept user logon failures), so this mess things up. Is there a way to solve this problem, i.e. make Jboss aware of differnt instances of same user may co-exist? Are there more specialized methods to get user exception, based on user session?

thanks,

1. Re: multiple users login

starksm64 Aug 28, 2005 1:26 PM (in response to tremalnaik)

The FormAuthValve was not getting the exception info reliably because the tomcat FormAuthenticator does not invoke the error page using valve chain. It uses a forward. An ExtendedFormAuthenticator has been added to jboss for 4.0.3 that resolves this issue.

See http://wiki.jboss.org/wiki/Wiki.jsp?page=ExtendedFormAuthenticator
Actions
2. Re: multiple users login

tremalnaik Aug 30, 2005 7:15 AM (in response to tremalnaik)

thanks
Actions

Go to original post