5 Replies Latest reply on Mar 10, 2010 2:16 AM by dima_ts

EJB3 @SecurityDomain and @RunAs or @RunAsPrincipal not worki

cfregin Nov 21, 2005 11:59 AM

Could someone show me, how to use @RunAs or @RunAsPrincipal?
My try:

SessionBean

@Stateless
@SecurityDomain("mysecuritydomain")
public class CustomerControllerBean implements CustomerController{
 @PersistenceContext EntityManager em;

 @RolesAllowed({"AdminUser"})
 public void createCustomer(String name){
 ...create user...
 }
}

JMX Bean

@Service (objectName="myjndi:service=testapplication")
@RunAs("AdminUser")
public class TestApplicationMBean implements TestApplication{
 @EJB CustomerController customerController;
 public String testAccess(String username){
 customerController.createCustomer(username);
 }
}

The access to my SessionBean is only working, if I make a login with the LoginContext with a valid user/password. My intention is to create AdminUsers through a JMX bean. Therefore, I have to permit some functions for the JMX-Bean. I do get "Authentication failure, Password Incorrect/Password Required" errors. I examined a little bit the workflow and see, that there is no principal set. (null)

Could it be, that @RunAs is not working in the current release?
JBoss version: 4.0.3SP1

1. Re: EJB3 @SecurityDomain and @RunAs or @RunAsPrincipal not w

mikeboo Dec 28, 2005 8:08 AM (in response to cfregin)

Hi,

I have exactly the same problem.
Did you solve it?
Actions
2. Re: EJB3 @SecurityDomain and @RunAs or @RunAsPrincipal not w

andrew_wot Apr 18, 2006 8:21 PM (in response to cfregin)

I am using 4.03 and running into the same issue.
Any ideas, are there some extra steps that I am missing?

Thanks
Actions
3. Re: EJB3 @SecurityDomain and @RunAs or @RunAsPrincipal not w

galo.navarro Oct 3, 2006 10:55 AM (in response to cfregin)

Put ne in the list, has anybody solved this?
Actions
4. Re: EJB3 @SecurityDomain and @RunAs or @RunAsPrincipal not w

rruppel Apr 7, 2008 4:23 PM (in response to cfregin)

I found this solution:

http://www.jboss.com/index.html?module=bb&op=viewtopic&p=4142183#4142183
Actions
5. Re: EJB3 @SecurityDomain and @RunAs or @RunAsPrincipal not worki

dima_ts Mar 10, 2010 2:16 AM (in response to cfregin)

Hi, i meet the same problem.
The solution by Rafael Ruppel didn't suite for me, i use jboss 5.1, there is no file jboss.xml (what is analog?)
My code (sorry, don't know how mark this text as code):

@SecurityDomain("my security domain")
@Stateless
public class UserSession
    implements IUserSessionRemote, UserSessionLocal {
...
@RolesAllowed("ADMINISTRATOR")
public IUser createUser( String aName, String aPassword, EUserRole aRole );

My solution.
   In local interface define the method:

IUser createUserLocal( String aName, String aPassword, EUserRole aRole );

and implement it in UserSession as copy of createUser()
   This metod invisible outside server code and no need in protection.
Inside server my custom mbean make call to UserSessionLocal::createUserLocal().

Regards
Egorov Dmitry.
Actions

Go to original post