-
1. Re: Every single remote ejb call starts full authentication process with SecurityDomain cache-type="default"
I am just testing AS7-3498 now - the description of what is happening in that issue should not be happening. For your remote client are you regularly creating a new connection or is this over the same connection?
-
2. Re: Every single remote ejb call starts full authentication process with SecurityDomain cache-type="default"
Holy sh... what a fast response ;-)
I just create the connection once, lookup the bean once and then call a method in a loop. Every call starts the authentication in the ejb SecurityDomain..
-
3. Re: Every single remote ejb call starts full authentication process with SecurityDomain cache-type="default"
Ok that does sound wrong - there is a situation I am still working on properly using the cache where new connections are created but if the same connection is used you should not be seeing repeated calls to the security domain - can you just show me your realm and domain configuration so I can double check it and I will cover your scenario in my testing.
-
4. Re: Every single remote ejb call starts full authentication process with SecurityDomain cache-type="default"
Ok, here we go:
We have a custom login-module for the remoting connector and another custom LoginModule for EJB Security Domain:
<security-realm name="ApplicationRealm"> <authentication> <jaas name="jas-remote"/> </authentication> </security-realm> <security-domains> <security-domain name="jas-remote" cache-type="default"> <authentication> <login-module code="com.os.ee.security.jboss.JBoss7RemotingLoginModule" flag="optional"/> </authentication> </security-domain> <security-domain name="jas" cache-type="default"> <authentication> <login-module code="com.os.ee.security.jboss.JBoss7ServerLoginModule" flag="required"/> </authentication> </security-domain> The caching with the remote connection seems to work, i see authentication only once per connection. Only securityDomain 'jas' is called everytime.
-
5. Re: Every single remote ejb call starts full authentication process with SecurityDomain cache-type="default"
Just to be clear - the jas domain, is that the one assigned to your EJB?
-
7. Re: Every single remote ejb call starts full authentication process with SecurityDomain cache-type="default"
Michael, ok just tested the call from a web app to an EJB as described in the original issue and the cache is being skipped in the EJB tier - for remote clients the call will be passing through the exact same point that is affecting the web app calls so it does appear to be exactly the same issue.
I am just looking now at how large an issue this will be to fix.
-
8. Re: Every single remote ejb call starts full authentication process with SecurityDomain cache-type="default"
Ok, Darran, thanks alot. Hope you can find a solution.
Michael
-
9. Re: Every single remote ejb call starts full authentication process with SecurityDomain cache-type="default"
Hello,
I'm facing the same issue. This happens when calling ejb method remotely and when calling it locally from a web application bundled in the same ear.
-
10. Re: Every single remote ejb call starts full authentication process with SecurityDomain cache-type="default"
This should be fixed in 7.1.1 which was released last night. Let us know if it resolves it for you. Thanks!
-
11. Re: Every single remote ejb call starts full authentication process with SecurityDomain cache-type="default"
Unfortunately it didn't worked for me with 7.1.1 version. The login module was called for every ejb call.
-
12. Re: Every single remote ejb call starts full authentication process with SecurityDomain cache-type="default"
Ok the issue resolved was not the only factor then. We will look into this next week . Thanks
-
14. Re: Every single remote ejb call starts full authentication process with SecurityDomain cache-type="default"
Michael, I am reviewing this issue again as I write this.
