since a few days i am trying to setup a jboss server that was running for a long time, but wasn't used for the past months. the deploy path is available with all the contents and is working like expected where no login is needed (apache and tomcat is also configured like before). database connections are loging in successfully.
the project itself is very huge - but the company that did the first setup is not available anymore. so we need to get it up and running ourselfs.
from my investigations the problem is the missing conf path. (login-conf.xml maybe)
when the application sends the auth - the tomcat is sending back that an auth is needed but not given and so the "RequestProcessor" is not available. There is no sql statements executed (i am monitoring the mysql.log on a development machine)
<realm-name>My Web Service</realm-name>
used for the test is an internal server with an internal name test.intern so that no traffic goes out - that is all workin well in the network so no need to think about that
what happens in auth is this
the client sends
the jk.log says
the cryptic string is a base64 encoded username password pair
that is the bottom of the problem - nowhere i am able to find informations if i can send this through login-config.xml into the database - i know how to say that the password is encrypted - and what the algorithm is - but not how to handle user and password within ONE base64string
my mysql statement would be like that
SELECT userID FROM logins WHERE username=? AND password=?
(password is md5 encrypted)
the second for the role would be
SELECT privilege FROM set_privileges WHERE userId=?
(privilege would be MyUser)
they are all fetched from MyDataBase
is there any help where i can find out how to handle that? (base64decode - split - md5 encode)