0 Replies Latest reply on Jun 25, 2014 5:30 AM by Thomas Vautrin

    Problem with mod_cluster and Digest authentication

    Thomas Vautrin Newbie




      I have configured 2 servers in domain mode (profil ha) and I have deployed a webapp (clustered) which require a digest authentication. Apache is using mod_cluster.



      When I request the application, Apache send the request to the node 1 which ask login/password. When I validate with the good data, if my request is send to node 1 by Apache, no problem but randomly, Apache send the request to node 2 which failed because it's not the original node of the authentication request.



      I don't know if the problem is due to my configuration, a jboss or mod_cluster bug. Maybe Digest authentication don't work with mod_cluster


      Thank you for your help !



      The products are :



      - JBoss EAP 6.1.0.Final

      - Apache 2.2.21 + Mod_cluster 1.2.6 Final (bundle on official site)





      Web app configuration (web.xml)



      <?xml version="1.0" encoding="UTF-8"?>

      <web-app id="WebApp_ID" version="3.0" xmlns="http://java.sun.com/xml/ns/javaee" xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xsi:schemaLocation="http://java.sun.com/xml/ns/javaee http://java.sun.com/xml/ns/javaee/web-app_3.0.xsd">

        <display-name>My Web Application</display-name>

        <distributable />



        <web-resource-name>All Access</web-resource-name>











        <!-- Security roles used by this web application -->






        <!-- Session Configuration -->







      JBoss configuration :



      <subsystem xmlns="urn:jboss:domain:modcluster:1.1">

        <mod-cluster-config advertise-socket="modcluster" balancer="mycluster" advertise="false" advertise-security-key="secret" connector="ajp">


        <load-metric type="busyness"/>






      Apache configuration




      ManagerBalancerName mycluster


        <Location />

        Order deny,allow   

        Allow from all




        KeepAliveTimeout 300

        MaxKeepAliveRequests 0

        AdvertiseFrequency 5

        AdvertiseSecurityKey secret




        <Location /mod_cluster-manager>

          SetHandler mod_cluster-manager

          Order deny,allow

          Allow from all