[prev in list] [next in list] [prev in thread] [next in thread]
List: jacorb-developer
Subject: Re: [jacorb-developer] GssUP => PolicyError
From: Michael Garbas <michael.garbas () student ! uni-siegen ! de>
Date: 2009-08-12 20:36:06
Message-ID: 60f990000908121336p7af447cch19811cecbc3d6a26 () mail ! gmail ! com
[Download RAW message or body]
Hi,
I've a new question about the GssUp stuff.
There is a class in the sas demo folder which is not documented in the
Programming Guide.
What can I do with the ListGssUpContext Class? I think it is possible to
validate the user and password information with it, right?
But what the parameters codec and contextToken stands for?
In addition I'm not sure that I've understood what the printSAS() of the
demo makes.
Is it right, that GssUpContext.setUsernamePassword("user", "passwd"); only
transfers the login-information from the client to the server and the
prinSAS Method prints it out???
How I can get access from the GssJacorbServer to a openLDAP/Kerberos Server
which implements the GSS-API to validate the user?
Sorry, but I'm neither a jacorb/GSS nor an LDAP expert. I hope somebody can
help me to get a little bit clearer with that...
kind regards,
Michael
2009/8/6 Michael Garbas <michael.garbas@student.uni-siegen.de>
> Oh, i'm so sorry! I think I've lost the properties for using jacorb instead
> of the java orb on copying my project to testing GSS.
>
> I think it works now!
>
> Thank you so much!!!
>
> Michael
>
>
> 2009/8/6 Nicolae Mihalache <nicolae.mihalache@spaceapplications.com>
>
> Now I see in your original message:
> >
> >
> > com.sun.corba.se.impl.interceptors.PIHandlerImpl.create_policy(PIHandlerImpl.java:882)
> >
> > This means that jacorb is not used but instead the corba implementation
> > part of Java.
> >
> > nicolae
> >
> >
> > Michael Garbas wrote:
> > > Mhh, your suggested options are set, i think.
> > >
> > > here is my log output:
> > > -----------------------------------
> > >
> > > 2009-08-03 23:34:02.526 FINE jacorb.interop.strict_check_on_tc_creation
> > set
> > > to true
> > > 2009-08-03 23:34:02.527 INFO
> > > ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
> > > JacORB V 2.3.1, www.jacorb.org
> > > (C) The JacORB project 27-May-2009
> > > ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
> > > 2009-08-03 23:34:02.529 FINE RequestProcessorPoolFactory settings:
> > > thread_pool_min=5 thread_pool_max=20 thread_pool_shared=false
> > > 2009-08-03 23:34:02.531 FINE added ORBInitializer:
> > > org.jacorb.orb.standardInterceptors.IORInterceptorInitializer
> > > 2009-08-03 23:34:02.531 FINE added ORBInitializer:
> > > org.jacorb.security.sas.GSSUPProviderInitializer
> > > 2009-08-03 23:34:02.532 FINE added ORBInitializer:
> > > org.jacorb.security.sas.SASInitializer
> > > 2009-08-03 23:34:02.540 FINE defaulting to DefaultSocketFactory
> > > 2009-08-03 23:34:02.550 FINE Maximum connection threads: 1000
> > > 2009-08-03 23:34:02.550 FINE Maximum idle threads: 5
> > > 2009-08-03 23:34:02.553 INFO Property "jacorb.hashtable_class" is set
> > to:
> > > java.util.Hashtable
> > > 2009-08-03 23:34:02.580 INFO InterceptorManager started with 1 Server
> > > Interceptors, 1 Client Interceptors and 2 IOR Interceptors
> > > 2009-08-03 23:34:02.605 FINE POA RootPOA ready
> > > 2009-08-03 23:34:02.605 FINE Maximum connection threads: 1000
> > > 2009-08-03 23:34:02.605 FINE Maximum idle threads: 5
> > > 2009-08-03 23:34:02.608 FINE waiting for queue
> > > 2009-08-03 23:34:02.613 FINE created org.omg.ETF.Factories:
> > > org.jacorb.orb.iiop.IIOPFactories
> > > 2009-08-03 23:34:02.620 FINE Using JSRandom implemented by null
> > > 2009-08-03 23:34:02.668 FINE created SSLServerSocketFactory:
> > > org.jacorb.security.ssl.sun_jsse.SSLServerSocketFactory@acb158
> > > 2009-08-03 23:34:02.917 FINE Created socket listener on
> > > 0.0.0.0/0.0.0.0:42214
> > > 2009-08-03 23:34:02.930 FINE reset a previous completion call
> > > 2009-08-03 23:34:02.931 INFO oid:
> > > 00 16 0D 2A 0D 38 4B 2D 33 01 ...*.8K-3.
> > > object is activated
> > > 2009-08-03 23:34:02.932 INFO Using server ID (3313036825) for transient
> > POA
> > > 2009-08-03 23:34:03.017 INFO ORB run
> > >
> > >
> > > It seems that the necessary options are loaded.
> > >
> > > Is it a problem to combine GSS with SSL, or do i need to create such a
> > > policy file?
> > >
> > >
> > >
> > > 2009/8/5 Nicolae Mihalache <nicolae.mihalache@spaceapplications.com>
> > >
> > >
> > > > I think you need these three options in jacorb.properties:
> > > > jacorb.security.sas.contextClass=org.jacorb.security.sas.GssUpContext
> > > >
> > > >
> > org.omg.PortableInterceptor.ORBInitializerClass.SAS=org.jacorb.security.sas.SASInitializer
> >
> > > >
> > > >
> > org.omg.PortableInterceptor.ORBInitializerClass.GSSUPProvider=org.jacorb.security.sas.GSSUPProviderInitializer
> >
> > > >
> > > >
> > > >
> > > >
> > > > Michael Garbas wrote:
> > > >
> > > > > Hi,
> > > > >
> > > > > at the moment i'm playing around with the GssUP Demo.
> > > > > I would like to authenticate my client against a combination af a
> > > > >
> > > > kerberos
> > > >
> > > > > & ldap infrastructure which implements the GSS API.
> > > > >
> > > > > My Problem is, when I'm trying to start my server with GssUP support
> > > > >
> > > > (like
> > > >
> > > > > the demo example) i get the following exception:
> > > > >
> > > > > org.omg.CORBA.PolicyError: There is no PolicyFactory Registered for
> > type
> > > > > 102
> > > > > at
> > > > >
> > > > >
> > > >
> > com.sun.corba.se.impl.interceptors.PIHandlerImpl.create_policy(PIHandlerImpl.java:882)
> >
> > > >
> > > > > at
> > com.sun.corba.se.impl.orb.ORBImpl.create_policy(ORBImpl.java:1469)
> > > > > at CORBA_Server_Starter.main(CORBA_Server_Starter.java:153)
> > > > >
> > > > > Line 153 in the CORBA_Server_Starter Class is:
> > > > > policies[2] = orb.create_policy(SAS_POLICY_TYPE.value, sasAny);
> > > > >
> > > > > My code is the same like the demo.
> > > > >
> > > > > Why I get this exception and what can i do to prevent it?
> > > > >
> > > > > regards,
> > > > >
> > > > > Michael
> > > > > _______________________________________________
> > > > > jacorb-developer maillist -
> > > > >
> > > > jacorb-developer@lists.spline.inf.fu-berlin.de
> > > >
> > > > >
> > https://lists.spline.inf.fu-berlin.de/mailman/listinfo/jacorb-developer
> > > > >
> > > > >
> > > > _______________________________________________
> > > > jacorb-developer maillist -
> > > > jacorb-developer@lists.spline.inf.fu-berlin.de
> > > >
> > https://lists.spline.inf.fu-berlin.de/mailman/listinfo/jacorb-developer
> > > >
> > > >
> > > _______________________________________________
> > > jacorb-developer maillist -
> > jacorb-developer@lists.spline.inf.fu-berlin.de
> > > https://lists.spline.inf.fu-berlin.de/mailman/listinfo/jacorb-developer
> > >
> >
> >
> > _______________________________________________
> > jacorb-developer maillist -
> > jacorb-developer@lists.spline.inf.fu-berlin.de
> > https://lists.spline.inf.fu-berlin.de/mailman/listinfo/jacorb-developer
> >
>
>
_______________________________________________
jacorb-developer maillist - jacorb-developer@lists.spline.inf.fu-berlin.de
https://lists.spline.inf.fu-berlin.de/mailman/listinfo/jacorb-developer
[prev in list] [next in list] [prev in thread] [next in thread]
Configure |
About |
News |
Add a list |
Sponsored by KoreLogic