Tomcat4.0 + JBoss3.0 : Authentication not working

objec Mar 3, 2002 6:03 PM

I'm using the JBoss 3.0.0 + Tomcat 4.0.2 release that was posted to the sourceforge download page on 2002-02-22.

I have a small webapp that uses form based authenication. The problem is that no matter what user name/password I put in (even undefinded ones), authentication allways succeeds! Furthermore it is as though the logged in user has all roles.

I have tested the app with just the Tomcat 4.0.3 distribution (seperate download) and it works perfectly - that is only valid users get through. It's a test app, and thus I'm just using the MemoryRealm and setup a couple of users in the conf/tomcat-users.xml file.

Does anyone have any ideas as to why it doesn't work with the JBoss + Tomcat distribution? I have not changed anything in either configuration, other then to add the users I want to the tomcat-users.xml file.

1. Re: Tomcat4.0 + JBoss3.0 : Authentication not working

dmitry_ame Aug 2, 2002 11:06 AM (in response to objec)

Peter, if you got it to work, please provide the example of following files:

login-config.xml
jboss-service.xml
-service.xml
web.xml
jboss-web.xml

Or if someone else got it to work, I'm screaming out, please HELP!!!
Actions
2. Re: Tomcat4.0 + JBoss3.0 : Authentication not working

jmoring Aug 2, 2002 11:34 AM (in response to objec)

Why don't you post a detailed message about what you have tried so far. I have security working and I will try to help you.

Jim
Actions
3. Re: Tomcat4.0 + JBoss3.0 : Authentication not working

dmitry_ame Aug 3, 2002 1:03 PM (in response to objec)

James, I've got it to work, thank you. For those who is still trying to solve the problem, I think few good examples are available at:

http://jboss.org/forums/thread.jsp?forum=49&thread=18824
Actions

Go to original post