3 Replies Latest reply on Jan 28, 2010 2:03 AM by natya

    Security interceptor error in jboss 5.1.0

      >Using jboss 5.1.0

      >using ejb 2 ,

      >Using Jaas DatabaseServerLoginModule for login.

      >During login , we get the subject,its roles. we get an interceptor error during the create()  method invocation  in the EJB

      >The same works in jboss 4.2.3 .

       

      jboss 5.1.0 console :

       

      12:35:13,671 INFO  [TomcatDeployment] deploy, ctxPath=/EJB3
      12:35:13,725 INFO  [Http11Protocol] Starting Coyote HTTP/1.1 on http-0.0.0.0-8080
      12:35:13,765 INFO  [AjpProtocol] Starting Coyote AJP/1.3 on ajp-0.0.0.0-8009
      12:35:13,773 INFO  [ServerImpl] JBoss (Microcontainer) [5.1.0.GA (build: SVNTag=JBoss_5_1_0_GA date=200905221634)] Started in 38s:78ms
      12:36:06,654 INFO  [STDOUT] Login...
      12:36:06,666 INFO  [STDOUT] SecurityDomain : JAAS
      12:36:06,677 INFO  [STDOUT] Call login on LoginCotnext...
      12:36:07,142 INFO  [STDOUT] Logged-in user principal : [abc@efg.com, Roles(members:Invient.Manage.Contacts,Invient.View.Contacts,Invient.View.All,Invient.Manage.
      12:36:07,145 INFO  [STDOUT] Logged-in user principal : Subject:
              Principal: abc@efg.com
              Principal: Roles(members:Manage.Contacts,View.Contacts,View.All,Manage.All)
      12:36:07,152 INFO  [STDOUT] Lookup bean
      12:36:07,172 INFO  [STDOUT] Invoke create() on bean
      12:36:07,208 ERROR [SecurityInterceptor] Error in Security Interceptor
      java.lang.SecurityException: Authentication exception, principal=abc@efg.com
              at org.jboss.ejb.plugins.SecurityInterceptor.checkSecurityContext(SecurityInterceptor.java:321)
              at org.jboss.ejb.plugins.SecurityInterceptor.process(SecurityInterceptor.java:243)
              at org.jboss.ejb.plugins.SecurityInterceptor.invokeHome(SecurityInterceptor.java:205)
              at org.jboss.ejb.plugins.security.PreSecurityInterceptor.process(PreSecurityInterceptor.java:136)
              at org.jboss.ejb.plugins.security.PreSecurityInterceptor.invokeHome(PreSecurityInterceptor.java:88)
              at org.jboss.ejb.plugins.LogInterceptor.invokeHome(LogInterceptor.java:132)
              at org.jboss.ejb.plugins.ProxyFactoryFinderInterceptor.invokeHome(ProxyFactoryFinderInterceptor.java:107)
              at org.jboss.ejb.SessionContainer.internalInvokeHome(SessionContainer.java:639)
              at org.jboss.ejb.Container.invoke(Container.java:1046)
              at org.jboss.ejb.plugins.local.BaseLocalProxyFactory.invokeHome(BaseLocalProxyFactory.java:362)
              at org.jboss.ejb.plugins.local.LocalHomeProxy.invoke(LocalHomeProxy.java:133)
              at $Proxy254.create(Unknown Source)
              at org.apache.jsp.pages.invoke_jsp._jspService(invoke_jsp.java:129)
              at org.apache.jasper.runtime.HttpJspBase.service(HttpJspBase.java:70)
              at javax.servlet.http.HttpServlet.service(HttpServlet.java:717)
              at org.apache.jasper.servlet.JspServletWrapper.service(JspServletWrapper.java:369)
              at org.apache.jasper.servlet.JspServlet.serviceJspFile(JspServlet.java:322)
              at org.apache.jasper.servlet.JspServlet.service(JspServlet.java:249)
              at javax.servlet.http.HttpServlet.service(HttpServlet.java:717)
              at org.apache.catalina.core.ApplicationFilterChain.internalDoFilter(ApplicationFilterChain.java:290)
              at org.apache.catalina.core.ApplicationFilterChain.doFilter(ApplicationFilterChain.java:206)
              at org.jboss.web.tomcat.filters.ReplyHeaderFilter.doFilter(ReplyHeaderFilter.java:96)
              at org.apache.catalina.core.ApplicationFilterChain.internalDoFilter(ApplicationFilterChain.java:235)
              at org.apache.catalina.core.ApplicationFilterChain.doFilter(ApplicationFilterChain.java:206)
              at org.apache.catalina.core.StandardWrapperValve.invoke(StandardWrapperValve.java:235)
              at org.apache.catalina.core.StandardContextValve.invoke(StandardContextValve.java:191)
              at org.jboss.web.tomcat.security.SecurityAssociationValve.invoke(SecurityAssociationValve.java:190)
              at org.jboss.web.tomcat.security.JaccContextValve.invoke(JaccContextValve.java:92)
              at org.jboss.web.tomcat.security.SecurityContextEstablishmentValve.process(SecurityContextEstablishmentValve.java:126)
              at org.jboss.web.tomcat.security.SecurityContextEstablishmentValve.invoke(SecurityContextEstablishmentValve.java:70)
              at org.apache.catalina.core.StandardHostValve.invoke(StandardHostValve.java:127)
              at org.apache.catalina.valves.ErrorReportValve.invoke(ErrorReportValve.java:102)
              at org.jboss.web.tomcat.service.jca.CachedConnectionValve.invoke(CachedConnectionValve.java:158)
              at org.apache.catalina.core.StandardEngineValve.invoke(StandardEngineValve.java:109)
              at org.apache.catalina.connector.CoyoteAdapter.service(CoyoteAdapter.java:330)
              at org.apache.coyote.http11.Http11Processor.process(Http11Processor.java:829)
              at org.apache.coyote.http11.Http11Protocol$Http11ConnectionHandler.process(Http11Protocol.java:598)
              at org.apache.tomcat.util.net.JIoEndpoint$Worker.run(JIoEndpoint.java:447)
              at java.lang.Thread.run(Thread.java:619)
      12:36:07,318 INFO  [STDOUT] Exception occured. Exception message : java.lang.SecurityException: Authentication exception, principal=abc@efg.com

       

      Solutions, insights, pointers will be appreciated

        • 1. Re: Security interceptor error in jboss 5.1.0
          jaikiran

          Is this EJB3 or EJB2.x? Also look into the TRACE level logs on jboss security package to see what's going on. To enable TRACE logs, follows Q4 in the wiki here http://www.jboss.org/community/wiki/SecurityFAQ

          • 2. Re: Security interceptor error in jboss 5.1.0

            thanks for the response Jaikiran

            Its is ejb 2, only the folder display name is ejb3.
            I used the link  http://www.jboss.org/community/wiki/SecurityFAQ but still I am not gettin any other detail log.

            • 3. Re: Security interceptor error in jboss 5.1.0
              12:28:00,231 INFO  [STDOUT] Logged-in user principal : Subject:
                      Principal: abc@efg.com
                      Principal: Roles(members:Manage.Contacts,View.Contacts,View.All,Manage.All)
              12:28:00,231 INFO  [STDOUT] Lookup bean
              12:28:00,247 INFO  [STDOUT] Invoke create() on bean
              12:28:00,294 ERROR [SecurityInterceptor] Error in Security Interceptor
              java.lang.SecurityException: Authentication exception, principal=abc@efg.com
                      at org.jboss.ejb.plugins.SecurityInterceptor.checkSecurityContext(SecurityInterceptor.java:321)
                      at org.jboss.ejb.plugins.SecurityInterceptor.process(SecurityInterceptor.java:243)
                      at org.jboss.ejb.plugins.SecurityInterceptor.invokeHome(SecurityInterceptor.java:205)
                      at org.jboss.ejb.plugins.security.PreSecurityInterceptor.process(PreSecurityInterceptor.java:136)
                      at org.jboss.ejb.plugins.security.PreSecurityInterceptor.invokeHome(PreSecurityInterceptor.java:88)
                      at org.jboss.ejb.plugins.LogInterceptor.invokeHome(LogInterceptor.java:132)
                      at org.jboss.ejb.plugins.ProxyFactoryFinderInterceptor.invokeHome(ProxyFactoryFinderInterceptor.java:107)
                      at org.jboss.ejb.SessionContainer.internalInvokeHome(SessionContainer.java:639)
                      at org.jboss.ejb.Container.invoke(Container.java:1046)
                      at org.jboss.ejb.plugins.local.BaseLocalProxyFactory.invokeHome(BaseLocalProxyFactory.java:362)
                      at org.jboss.ejb.plugins.local.LocalHomeProxy.invoke(LocalHomeProxy.java:133)
                      at $Proxy254.create(Unknown Source)
                      at org.apache.jsp.pages.invoke_jsp._jspService(invoke_jsp.java:126)
                      at org.apache.jasper.runtime.HttpJspBase.service(HttpJspBase.java:70)
                      at javax.servlet.http.HttpServlet.service(HttpServlet.java:717)
                      at org.apache.jasper.servlet.JspServletWrapper.service(JspServletWrapper.java:369)
                      at org.apache.jasper.servlet.JspServlet.serviceJspFile(JspServlet.java:322)
                      at org.apache.jasper.servlet.JspServlet.service(JspServlet.java:249)
                      at javax.servlet.http.HttpServlet.service(HttpServlet.java:717)
                      at org.apache.catalina.core.ApplicationFilterChain.internalDoFilter(ApplicationFilterChain.java:290)
                      at org.apache.catalina.core.ApplicationFilterChain.doFilter(ApplicationFilterChain.java:206)
                      at org.jboss.web.tomcat.filters.ReplyHeaderFilter.doFilter(ReplyHeaderFilter.java:96)
                      at org.apache.catalina.core.ApplicationFilterChain.internalDoFilter(ApplicationFilterChain.java:235)
                      at org.apache.catalina.core.ApplicationFilterChain.doFilter(ApplicationFilterChain.java:206)
                      at org.apache.catalina.core.StandardWrapperValve.invoke(StandardWrapperValve.java:235)
                      at org.apache.catalina.core.StandardContextValve.invoke(StandardContextValve.java:191)
                      at org.jboss.web.tomcat.security.SecurityAssociationValve.invoke(SecurityAssociationValve.java:190)
                      at org.jboss.web.tomcat.security.JaccContextValve.invoke(JaccContextValve.java:92)
                      at org.jboss.web.tomcat.security.SecurityContextEstablishmentValve.process(SecurityContextEstablishmentValve.java:126)
                      at org.jboss.web.tomcat.security.SecurityContextEstablishmentValve.invoke(SecurityContextEstablishmentValve.java:70)
                      at org.apache.catalina.core.StandardHostValve.invoke(StandardHostValve.java:127)
                      at org.apache.catalina.valves.ErrorReportValve.invoke(ErrorReportValve.java:102)
                      at org.jboss.web.tomcat.service.jca.CachedConnectionValve.invoke(CachedConnectionValve.java:158)
                      at org.apache.catalina.core.StandardEngineValve.invoke(StandardEngineValve.java:109)
                      at org.apache.catalina.connector.CoyoteAdapter.service(CoyoteAdapter.java:330)
                      at org.apache.coyote.http11.Http11Processor.process(Http11Processor.java:829)
                      at org.apache.coyote.http11.Http11Protocol$Http11ConnectionHandler.process(Http11Protocol.java:598)
                      at org.apache.tomcat.util.net.JIoEndpoint$Worker.run(JIoEndpoint.java:447)
                      at java.lang.Thread.run(Thread.java:619)
              12:28:00,309 INFO  [STDOUT] Exception occured. Exception message : SecurityException
              12:28:00,309 INFO  [STDOUT] Exception occured. Exception message : java.lang.SecurityException: Authentication exception, principal=abc@efg.com
              12:28:00,309 ERROR [STDERR] javax.ejb.AccessLocalException: SecurityException
              12:28:00,309 ERROR [STDERR]     at org.jboss.ejb.plugins.LogInterceptor.handleException(LogInterceptor.java:384)
              12:28:00,309 ERROR [STDERR]     at org.jboss.ejb.plugins.LogInterceptor.invokeHome(LogInterceptor.java:136)
              12:28:00,309 ERROR [STDERR]     at org.jboss.ejb.plugins.ProxyFactoryFinderInterceptor.invokeHome(ProxyFactoryFinderInterceptor.java:107)
              12:28:00,309 ERROR [STDERR]     at org.jboss.ejb.SessionContainer.internalInvokeHome(SessionContainer.java:639)
              12:28:00,309 ERROR [STDERR]     at org.jboss.ejb.Container.invoke(Container.java:1046)
              12:28:00,309 ERROR [STDERR]     at org.jboss.ejb.plugins.local.BaseLocalProxyFactory.invokeHome(BaseLocalProxyFactory.java:362)
              12:28:00,309 ERROR [STDERR]     at org.jboss.ejb.plugins.local.LocalHomeProxy.invoke(LocalHomeProxy.java:133)
              12:28:00,309 ERROR [STDERR]     at $Proxy254.create(Unknown Source)
              12:28:00,309 ERROR [STDERR]     at org.apache.jsp.pages.invoke_jsp._jspService(invoke_jsp.java:126)
              12:28:00,309 ERROR [STDERR]     at org.apache.jasper.runtime.HttpJspBase.service(HttpJspBase.java:70)
              12:28:00,309 ERROR [STDERR]     at javax.servlet.http.HttpServlet.service(HttpServlet.java:717)
              12:28:00,309 ERROR [STDERR]     at org.apache.jasper.servlet.JspServletWrapper.service(JspServletWrapper.java:369)
              12:28:00,309 ERROR [STDERR]     at org.apache.jasper.servlet.JspServlet.serviceJspFile(JspServlet.java:322)
              12:28:00,309 ERROR [STDERR]     at org.apache.jasper.servlet.JspServlet.service(JspServlet.java:249)
              12:28:00,309 ERROR [STDERR]     at javax.servlet.http.HttpServlet.service(HttpServlet.java:717)
              12:28:00,309 ERROR [STDERR]     at org.apache.catalina.core.ApplicationFilterChain.internalDoFilter(ApplicationFilterChain.java:290)
              12:28:00,309 ERROR [STDERR]     at org.apache.catalina.core.ApplicationFilterChain.doFilter(ApplicationFilterChain.java:206)
              12:28:00,309 ERROR [STDERR]     at org.jboss.web.tomcat.filters.ReplyHeaderFilter.doFilter(ReplyHeaderFilter.java:96)
              12:28:00,309 ERROR [STDERR]     at org.apache.catalina.core.ApplicationFilterChain.internalDoFilter(ApplicationFilterChain.java:235)
              12:28:00,309 ERROR [STDERR]     at org.apache.catalina.core.ApplicationFilterChain.doFilter(ApplicationFilterChain.java:206)
              12:28:00,309 ERROR [STDERR]     at org.apache.catalina.core.StandardWrapperValve.invoke(StandardWrapperValve.java:235)
              12:28:00,309 ERROR [STDERR]     at org.apache.catalina.core.StandardContextValve.invoke(StandardContextValve.java:191)
              12:28:00,309 ERROR [STDERR]     at org.jboss.web.tomcat.security.SecurityAssociationValve.invoke(SecurityAssociationValve.java:190)
              12:28:00,309 ERROR [STDERR]     at org.jboss.web.tomcat.security.JaccContextValve.invoke(JaccContextValve.java:92)
              12:28:00,309 ERROR [STDERR]     at org.jboss.web.tomcat.security.SecurityContextEstablishmentValve.process(SecurityContextEstablishmentValve.java:126)
              12:28:00,309 ERROR [STDERR]     at org.jboss.web.tomcat.security.SecurityContextEstablishmentValve.invoke(SecurityContextEstablishmentValve.java:70)
              12:28:00,309 ERROR [STDERR]     at org.apache.catalina.core.StandardHostValve.invoke(StandardHostValve.java:127)
              12:28:00,309 ERROR [STDERR]     at org.apache.catalina.valves.ErrorReportValve.invoke(ErrorReportValve.java:102)
              12:28:00,309 ERROR [STDERR]     at org.jboss.web.tomcat.service.jca.CachedConnectionValve.invoke(CachedConnectionValve.java:158)
              12:28:00,309 ERROR [STDERR]     at org.apache.catalina.core.StandardEngineValve.invoke(StandardEngineValve.java:109)
              12:28:00,309 ERROR [STDERR]     at org.apache.catalina.connector.CoyoteAdapter.service(CoyoteAdapter.java:330)
              12:28:00,309 ERROR [STDERR]     at org.apache.coyote.http11.Http11Processor.process(Http11Processor.java:829)
              12:28:00,309 ERROR [STDERR]     at org.apache.coyote.http11.Http11Protocol$Http11ConnectionHandler.process(Http11Protocol.java:598)
              12:28:00,309 ERROR [STDERR]     at org.apache.tomcat.util.net.JIoEndpoint$Worker.run(JIoEndpoint.java:447)
              12:28:00,309 ERROR [STDERR]     at java.lang.Thread.run(Thread.java:619)
              12:28:00,309 ERROR [STDERR] Caused by: java.lang.SecurityException: Authentication exception, principal=abc@efg.com
              12:28:00,309 ERROR [STDERR]     at org.jboss.ejb.plugins.SecurityInterceptor.checkSecurityContext(SecurityInterceptor.java:321)
              12:28:00,309 ERROR [STDERR]     at org.jboss.ejb.plugins.SecurityInterceptor.process(SecurityInterceptor.java:243)
              12:28:00,309 ERROR [STDERR]     at org.jboss.ejb.plugins.SecurityInterceptor.invokeHome(SecurityInterceptor.java:205)
              12:28:00,309 ERROR [STDERR]     at org.jboss.ejb.plugins.security.PreSecurityInterceptor.process(PreSecurityInterceptor.java:136)
              12:28:00,309 ERROR [STDERR]     at org.jboss.ejb.plugins.security.PreSecurityInterceptor.invokeHome(PreSecurityInterceptor.java:88)
              12:28:00,309 ERROR [STDERR]     at org.jboss.ejb.plugins.LogInterceptor.invokeHome(LogInterceptor.java:132)
              12:28:00,309 ERROR [STDERR]     ... 33 more