This content has been marked as final.
Show 2 replies
-
1. Re: Question on Basic WS Authentication
asoldano Nov 28, 2007 6:50 AM (in response to mendaye)I suggest you to start with this: http://jbws.dyndns.org/mediawiki/index.php?title=JAX-WS_User_Guide#Secure_endpoints
-
2. Re: Question on Basic WS Authentication
mjhammel Jan 24, 2008 12:39 PM (in response to mendaye)Alessio:
In JBOSS 4.0.5GA I dropped crunch-login-config-service.xml and crunch-login-config.xml into server/default/conf in order to enable a DB based authentication. This worked fine. In 4.2.2GA it doesn't appear that crunch-login-config-service.xml is being seen. The only way to get crunch-login-config.xml to be read is to manually put it into login-config.xml. Am I missing something or is this a change to 4.2.2GA that I'll just have to live with?
Here are the contents of the two files:
crunch-login-config-service.xml<?xml version="1.0" encoding="UTF-8"?> <!DOCTYPE server> <server> <mbean code="org.jboss.security.auth.login.DynamicLoginConfig" name="jboss:service=DynamicLoginConfig"> <attribute name="AuthConfig">crunch-login-config.xml</attribute> <depends optional-attribute-name="LoginConfigService">jboss.security:service=XMLLoginConfig</depends> <depends optional-attribute-name="SecurityManagerService">jboss.security:service=JaasSecurityManager</depends> </mbean> </server>
crunch-login-config.xml<?xml version='1.0'?> <!DOCTYPE policy PUBLIC "-//JBoss//DTD JBOSS Security Config 3.0//EN" "http://www.jboss.org/j2ee/dtd/security_config.dtd"> <!-- Crunch Security Realm Configuration. This file defines how authentication is determined for access to pages. This file gets copied to $JBOSS_HOME/server/default/conf by the Ant build. --> <policy> <application-policy name = "CrunchDBRealm"> <authentication> <login-module code = "org.jboss.security.auth.spi.DatabaseServerLoginModule" flag = "required"> <module-option name = "unauthenticatedIdentity">guest</module-option> <module-option name = "dsJndiName">java:/CrunchDS</module-option> <module-option name = "principalsQuery">SELECT password FROM subscriber WHERE username=?</module-option> <module-option name = "rolesQuery">SELECT CRUNCHROLES.ROLENAME, 'Roles' FROM CRUNCHROLES, SUBSCRIBER WHERE SUBSCRIBER.USERNAME=? AND CRUNCHROLES.USERGUID=SUBSCRIBER.GUID</module-option> </login-module> </authentication> </application-policy> </policy>
Again, in 4.2.2GA if I copy everything between and in the crunch-login-config.xml into login-config.xml then authentication works as it's supposed to. But I'd rather just drop in my own config without mucking with the JBOSS default config, if that's still possible.