8 Replies Latest reply on Jul 4, 2012 2:04 AM by jaysensharma

How to setup jdbcRealm in JBoss AS 7

hfluz Dec 7, 2011 12:11 PM

Hi, I'm beginning to use JBoss 7 AS my application server (I was using glassfish v3 before).

I already migrated my J2EE (JSF 2, EJB 3, JPA 2, CDI) to AS 7, but I'm stuck in the security realm configuration.

In glassfish I was used to configure the domain.xml like below:

<auth-realm name="ati" classname="com.sun.enterprise.security.auth.realm.jdbc.JDBCRealm">  
          <property name="jaas-context" value="jdbcRealm"></property>  
          <property name="password-column" value="senha"></property>  
          <property name="assign-groups" value="aluno"></property>  
          <property name="datasource-jndi" value="jdbc/security"></property>  
          <property name="group-table" value="grupo"></property>  
          <property name="user-table" value="usuario"></property>  
          <property name="group-name-column" value="nome"></property>  
          <property description="null" name="digest-algorithm" value="MD5"></property>  
          <property name="user-name-column" value="nome"></property>  

</auth-realm>

But in JBoss AS 7 I'm a bit confused. I tried to add this to standalone.xml:

<security-domain name="portalAuth">  
<authentication>  
          <login-module code="Database" flag="required">  
               <module-option name="dsJndiName" value="java:jboss/datasources/portal"/>  
               <module-option name="principalsQuery" value="SELECT senha FROM Usuario WHERE email=?"/>  
               <module-option name="hashAlgorithm">SHA-256</module-option>  
               <module-option name="hashEncoding">base64</module-option>  
          </login-module>  
     </authentication>  
</security-domain>

But I can't access the portalAuth security domain as a realm in my web application.

There's also a secction to configure realms in standalone.xml:

<security-realms>  
            <security-realm name="PropertiesMgmtSecurityRealm">  
                <authentication>  
                    <properties path="mgmt-users.properties" relative-to="jboss.server.config.dir"/>  
                </authentication>  
            </security-realm>  
</security-realms>

But I don't know how to configure it. How should I proceed in order to configure a simple jdbcRealm (as in glassfish)? Do I need to use both security-realm and security-domain? Only one of them? How should I access them through my application's web.xml?

Obs. In case my english isn't clear enough I apologize in advance.

1. Re: How to setup jdbcRealm in JBoss AS 7

hfluz Dec 8, 2011 2:34 PM (in response to hfluz)

I got my answer in this thread: http://community.jboss.org/message/640619#640619

I just needed the security-domain configuration in standalonde.xml and the jboss-web.xml in my project.
Actions
2. Re: How to setup jdbcRealm in JBoss AS 7

jamesmarkchan Jul 1, 2012 6:39 PM (in response to hfluz)

Is it possible to comment where these files are located in your installation? I would really appreciate it
Actions
3. Re: How to setup jdbcRealm in JBoss AS 7

hfluz Jul 2, 2012 2:46 PM (in response to jamesmarkchan)
jboss-web.xml is located inside the web project in the WebContent/WebInf folder. Its content is:

<?xml version="1.0" encoding="UTF-8"?> <jboss-web> <security-domain>java:/jaas/securityDomainName</security-domain> </jboss-web>
Actions
4. Re: How to setup jdbcRealm in JBoss AS 7

jamesmarkchan Jul 3, 2012 1:29 PM (in response to hfluz)

Hi Humberto,

What database are you using and can you post your table creation sql? I don't know if you use stackoverflow but I posted a question related to this thread and you are welcome to answer since you've gotton it working

http://stackoverflow.com/questions/11302397/role-vs-rolegroup-in-databaseserverloginmodule

I'm still trying to get my copy to work. :/
Actions
5. Re: How to setup jdbcRealm in JBoss AS 7

jaysensharma Jul 3, 2012 3:06 PM (in response to jamesmarkchan)

Hi James,

          You can give it a try just refer to the following links:

http://middlewaremagic.com/jboss/?p=387    Database Authentication in JBoss for Web Applications In JBoss AS7     (using Oracle Database)

http://middlewaremagic.com/jboss/?p=2187     Configuring JBossAS7 ManagementRealm with the Database LoginModule   (Using MySQL Database)
Actions
6. Re: How to setup jdbcRealm in JBoss AS 7

jamesmarkchan Jul 3, 2012 7:49 PM (in response to jaysensharma)

so a quick follow up question... my team is using jboss 6. would these tutorials work for jboss 6? I am definitely aware this is a jboss 7 thread
Actions
7. Re: How to setup jdbcRealm in JBoss AS 7

hfluz Jul 3, 2012 7:53 PM (in response to jamesmarkchan)

I guess there's some differences in terms of configuration. I think you should read the JBoss AS 6 security documentation. Sites like middlewaremagic maybe have content about previous versions of JBoss AS too.
Actions
8. Re: How to setup jdbcRealm in JBoss AS 7

jaysensharma Jul 4, 2012 2:04 AM (in response to hfluz)

Hi James,

As the JBoss AS7 XSDs are little different so the previous links which i posted for DatabaseLoginModule configuration on AS7 will not be very useful for JBossAS6 but you can go through the following link for JBossAS6 database LoginModule configuration:

http://middlewaremagic.com/jboss/?p=166 (Database Authentication in JBoss for Web Applications In JBoss AS6)
Actions

Go to original post