1 Reply Latest reply on Aug 9, 2007 6:23 PM by Ron Sigal

    Bad password

    Martin Ganserer Novice


      I am trying to get an application working that communicates between JBOSS server and a client via HTTP. Basically this works fine. But now I am facing a problem.
      I have defined a simple security domain that is used by my application.
      After introducing this security domain I get following exception:

      2007-07-24 16:42:03,612 DEBUG [org.jboss.security.auth.spi.UsersRolesLoginModule] Loaded properties, users=[user, timerecorder]
      2007-07-24 16:42:03,612 DEBUG [org.jboss.security.auth.spi.UsersRolesLoginModule] Loaded properties, users=[timerecorder]
      2007-07-24 16:42:03,612 DEBUG [org.jboss.security.auth.spi.UsersRolesLoginModule] Bad password for username=null
      2007-07-24 16:42:03,612 DEBUG [org.jboss.ejb3.security.Ejb3AuthenticationInterceptor] Authentication failure
      javax.security.auth.login.FailedLoginException: Password Incorrect/Password Required

      This is strange as my client provides proper credentials!

      env.put(InitialContext.PROVIDER_URL, "http://myhost/invoker/HAJNDIFactory");
      env.put(InitialContext.INITIAL_CONTEXT_FACTORY, "org.jboss.naming.HttpNamingContextFactory");
      env.put(InitialContext.SECURITY_PRINCIPAL, "username");
      env.put(InitialContext.SECURITY_CREDENTIALS, "password");
      env.put("java.naming.factory.url.pkgs", "org.jboss.naming:org.jnp.interfaces");
       ctx = new InitialContext(env);
      catch (NamingException e1)

      The LoginModule seams to be correct as it works when I use
      org.jboss.security.jndi.JndiLoginInitialContextFactory for example!

      Do I miss something? Thank you for helping me!!