-
1. Re: Problem: JAAS + EJB + WEB
jaikiran Apr 18, 2007 9:26 AM (in response to dgouvea)How I can loggin in my WEB Project and access the EJBs in my EJB Project?
Have a look at http://wiki.jboss.org/wiki/Wiki.jsp?page=SecureAWebApplicationInJBoss -
2. Re: Problem: JAAS + EJB + WEB
dgouvea Apr 18, 2007 10:16 AM (in response to dgouvea)I'm following this steps, I read many tutorials, but the problem continues.
Look the systems steps (When WEB Project and EJB Project be in same EAR File):
1. > User loggin in Web Application
2. > System call JAAS LoginModule and Authentication User
3. > Redired Index Page
4. > Filter intercept and call EJB, after redirect to index page
5. > Open page with data retrieved from EJB
Look the systems steps (When WEB Project be out of EAR File):
1. > User loggin in Web Application
2. > System call JAAS LoginModule and Authentication User
3. > Open page for User input data
4. > Submit page
5. > Servlet remote call EJB
6. > System call JAAS LoginModule and Authentication User *
7. > Error: not username and password **
* Why System call JAAS Module again??
** Why Servlet don't transport the user logged for remote call? -
3. Re: Problem: JAAS + EJB + WEB
dgouvea Apr 18, 2007 10:54 AM (in response to dgouvea)Why in my Servlet, after user loggin, the SecurityAssociation.getPrincipal() returns null ?
The SecurityAssociation only used in EJB Context ?