2 Replies Latest reply on Dec 1, 2005 9:40 PM by Richard Merry

    SecurityExcetion deploying AS 3.2 app in AS 4.0.2

    Richard Merry Newbie


      I've been working on moving from JBoss AS 3.2.5 to 4.0.2. I have three apps , all with a web tier and EJB tier. All are secured with JAAS requiring a user to login in order to access. No problems running under 3.2.5.

      Depoying these apps under 4.0.2 yields the following expcetion:
      java.lang.SecurityException: MBeanTrustPermission(register) not implied by protection domain of mbean
      at org.jboss.mx.server.MBeanServerImpl.registerMBean(MBeanServerImpl.java:1383)
      at org.jboss.mx.server.MBeanServerImpl.registerMBean(MBeanServerImpl.java:361)
      at org.apache.commons.modeler.Registry.registerComponent(Registry.java:871)

      I can't find any reference in the doco or forums on this, though MBeanServerImpl clearly has a check.

      I'm figuring this has something to do with the new JACC spec used in 4.0.2. I'm not familiar with policy files or such low-level permissions in general.

      Any ideas please?