2 Replies Latest reply on Jun 1, 2012 10:38 AM by raneves

SPNEGO, HttpServletRequets.getRemoteUser() vs. EJBContext.getCallerPrincipal().getName() inconsistency

alfonz19 Apr 16, 2012 7:29 AM

Hi,

I have to ask this question. I've spend many hours browsing sources and do not know the answer.

Suppose I've got here setup FORM based authentication. Then getRemoteUser() on HttpServletRequest instance returns name of logged-in user (when there is logged in user). And the same user name will returned when called getCallerPrincipal().getName() on EJBContext instance. That's fine.

I've got here SPNEGO configured. It works fine. BUT while I'm still able to get user name from getRemoteUser() from servlet, I'm not able to do so with EJBContext - getCallerPrincipal().getName() returns some hash or something. I really need to get users login name. How can one do that from EJBContext? Where does this hash/something comes from and why?

If I try to debug it and look into security context I see subject correct principals, correct caller principal, correct roles, some identity (also something hash-like, but that's different value from the one from EJBContext.getCallerPrincipal())

thanks in advance.

ask if you need any more information, I'll try to provide them asap.

1. Re: SPNEGO, HttpServletRequets.getRemoteUser() vs. EJBContext.getCallerPrincipal().getName() inconsistency

raneves May 31, 2012 3:02 PM (in response to alfonz19)

I have same problem, my friend.
you solved this question?
Actions
2. Re: SPNEGO, HttpServletRequets.getRemoteUser() vs. EJBContext.getCallerPrincipal().getName() inconsistency

raneves Jun 1, 2012 10:38 AM (in response to alfonz19)

this problem not has a perfect solution.
but a possible solution for this is: https://issues.jboss.org/browse/EJBTHREE-1756
this discussion explain the motivation: https://community.jboss.org/message/531986#531986
Actions

Go to original post