2 Replies Latest reply on May 31, 2013 4:09 PM by ahmedza

    Password Incorrect/Password Required on Guvnor JAAS authentication

    om.omshiv

      I am using  JBOSS7.1.1 and Guvnor 5.5.0 , I have an issue on implementing Jaas authentication. On Guvnor Url http://localhost:8080/guvnor/ a login window has been popup and after filling credential its throw a exception --------- Password Incorrect/Password Required :-

       

      20:57:14,371 ERROR [org.drools.guvnor.server.security.SecurityServiceImpl] (http--127.0.0.1-8080-1) Unable to login.

      20:57:29,336 INFO  [org.drools.guvnor.server.security.SecurityServiceImpl] (http--127.0.0.1-8080-1) Logging in user [admin]

      20:57:29,345 ERROR [org.jboss.seam.security.jaas.JaasAuthenticator] (http--127.0.0.1-8080-1) JAAS authentication failed: javax.security.auth.login.FailedLoginException: Password Incorrect/Password Required

                at org.jboss.security.auth.spi.UsernamePasswordLoginModule.login(UsernamePasswordLoginModule.java:270) [picketbox-4.0.7.Final.jar:4.0.7.Final]

                at org.jboss.security.auth.spi.UsersRolesLoginModule.login(UsersRolesLoginModule.java:155) [picketbox-4.0.7.Final.jar:4.0.7.Final]

                at sun.reflect.NativeMethodAccessorImpl.invoke0(Native Method) [rt.jar:1.7.0_03]

                at sun.reflect.NativeMethodAccessorImpl.invoke(NativeMethodAccessorImpl.java:57) [rt.jar:1.7.0_03]

                at sun.reflect.DelegatingMethodAccessorImpl.invoke(DelegatingMethodAccessorImpl.java:43) [rt.jar:1.7.0_03]

                at java.lang.reflect.Method.invoke(Method.java:601) [rt.jar:1.7.0_03]

       

      My beans.xml

      <security:IdentityImpl>

         <s:modifies/>

      <security:authenticatorName>jaasAuthenticator</security:authenticatorName>

      </security:IdentityImpl>

      <security:jaas.JaasAuthenticator>

         <s:modifies/>

         <security:jaasConfigName>other</security:jaasConfigName>

      </security:jaas.JaasAuthenticator>

       

         <!-- SECURITY AUTHORIZATION CONFIGURATION -->

       

      <guvnorSecurity:RoleBasedPermissionResolver>

      <s:modifies/>

      <guvnorSecurity:enableRoleBasedAuthorization>true</guvnorSecurity:enableRoleBasedAuthorization>

      </guvnorSecurity:RoleBasedPermissionResolver>

      <weld:scan>

          <!-- Disable the seam-security by drools rules -->

          <weld:exclude name="org.jboss.seam.security.permission.RuleBasedPermissionResolver"/>

          <!-- TODO remove me when GUVNOR-1196 is fixed -->

          <weld:exclude name="org.drools.guvnor.gwtutil.**"/>

          <weld:exclude name="org.drools.guvnor.client.**"/>

        </weld:scan>

       

       

      and I have added user using add-uers.bat of JBOSS 7.1.1 as applicationRealm like

      application.user.properties ->  admin=29049c68744bd420a1d588a6892ee1aa

      application-roles.properties -> admin=admin

       

      noting to change in jboss\standalone\configuration\standalone.XML because I am using "other" security:jaasConfigName

       

      Please help me to resolve this issue.  and guide me to what will be the right configuration. and where to add user and password..step by step