1 Reply Latest reply on Jan 14, 2013 5:13 AM by halliballi

DatabaseLogin Module Problem Principal and Credentials from client

halliballi Jan 10, 2013 6:56 AM

Hallo there, I hope someone can help me, I am stuck with a problem now for several month.

I migrate an application from Jboss 4 to JBoss AS 7

On Serverside in standalone.xml I have configured that the system should use database login.

               <security-domain name="MySecurityDomain">
                    <authentication>
                        <login-module code="Database" flag="required">
                            <module-option name="dsJndiName" value="java:jboss/datasources/MyDataSource"/>
                            <module-option name="principalsQuery" value="select password from [user] where id = ?"/>
                            <module-option name="rolesQuery" value="select roles.name 'Role', null 'RoleGroup' from [permission_role_list] as roles, [user] as users, [permission_user_role_con] as userroles where userroles.permission_role_listID = roles.id and users.id=userroles.userID and (users.id = ?)"/>
                            <module-option name="password-stacking" value="useFirstPass"/>
                        </login-module>
                    </authentication>
                </security-domain>

But I don't know how to propagate my client login information to the server.

In JBoss 4 I just set principal and credentials in org.jboss.security.SecurityAssociation (I use a custom principal class)

and in the where clause of the principalsQuery the id parameter is than autmatically the one that I have set in my principal.

When I try this in JBoss AS 7 the query results in an error, the id seems to be some random text.

Both (client and server) are running on the same machine and I this is how my ejb-client-properties look like:

remote.connectionprovider.create.options.org.xnio.Options.SSL_ENABLED=false

remote.connections=default

remote.connection.default.host=172.16.31.22

remote.connection.default.port = 4447

remote.connection.default.connect.options.org.xnio.Options.SASL_POLICY_NOANONYMOUS=true

remote.connection.default.connect.options.org.xnio.Options.SASL_DISALLOWED_MECHANISMS=JBOSS-LOCAL-USER

remote.connection.default.connect.options.org.xnio.Options.SASL_POLICY_NOPLAINTEXT=false

I just don't know how to set my principal on client side and than use it on serverside for the rolesQuery and principalsQuery

How can I do something like this with JBoss AS 7?

Has some one working example code for me?

Do I need Picketbox and if so, what do I have to configure that my Server gets the information and knows which principal to use?

Or do I have to create some kind of CallbackHandler which provides the query with the information?

I hope my questions are not stupid but in the meanwhile I am kind of desperate.

Thanks for any help.

1. Re: DatabaseLogin Module Problem Principal and Credentials from client

halliballi Jan 14, 2013 5:13 AM (in response to halliballi)

I still don't have the solution. But I found out, that if I use a callbackHandler, I can set the necessary data on client side.
But there is still a problem, is there a possibility to start anoymousely and than login somehow?
By the way I am using remoting.
Thank you
Actions