[prev in list] [next in list] [prev in thread] [next in thread]
List: jboss-user
Subject: Re: [JBoss-user] help clearing a single user from authentication
From: David Ward <david.ward () dotech ! com>
Date: 2003-01-30 17:47:11
[Download RAW message or body]
I have added an RFE to SourceForge:
https://sourceforge.net/tracker/index.php?func=detail&aid=677614&group_id=22866&atid=376688
On a side note, does anyone know if Scott Stark is on vacation? I
haven't noticed any emails from him on the list for a few days.
Thanks again,
David
--
Meyer-Willner, Bernhard escribió::
> RFE in sourceforge sounds good to me. The methods you mention have been
> there since 3.0.5.
>
> -----Ursprüngliche Nachricht-----
> Von: David Ward [mailto:david.ward@dotech.com]
> Gesendet: Mittwoch, 29. Januar 2003 16:33
> An: jboss-user@lists.sourceforge.net
> Betreff: Re: [JBoss-user] help clearing a single user from
> authentication cache
>
>
> I just upgraded from jboss-3.0.4_tomcat-4.1.12 to
> jboss-3.0.6_tomcat-4.1.18. I noticed a LOT more methods in the
> JaasSecurityManagerService. The methods are now:
>
> getPrincipal()
> registerSecurityDomain()
> isValid()
> start()
> create()
> doesUserHaveRole()
> getAuthenticationCachePrincipals()
> stop()
> getUserRoles()
> flushAuthenticationCache()
> destroy()
>
> Oh, how I wish there was a removeAuthenticationCachePrincipal() that
> took a String username or Principal!
>
> Should I submit an RFE at sourceforge, or can I beg the powers-that-be
> (Scott?) to add it to a 3.0.7? Or maybe there's a way to accomplish
> what I want in 3.0.6 that I don't know about?
>
> Thanks,
> David
>
> --
>
> Meyer-Willner, Bernhard escribió::
>
>>Very interesting! I would like to do the same. I'm already using the
>
> method
>
>>java.util.List getAuthenticationCachePrincipals() which I believe is
>>available only since 3.0.5 to get a List of the principals currently in
>
> the
>
>>authentication cache. I looked up the JaasSecurityManager directly from
>
> the
>
>>MBeanServer since also my lookup of java:/timedCacheFactory failed. I
>
> don't
>
>>see a method to evict a single user from the cache, just all by calling
>>flushAuthenticationCache. Is there a method like this? Besides...something
>>else...would it be possible to show the meanings of the parameters of
>
> MBean
>
>>operations in JMX Console. Sometimes it's kind of hard to guess what they
>>mean and it's kind of cumbersome to look it up in the Javadocs.
>>
>>Thanks,
>>Bernhard
>>
>>
>>-----Ursprüngliche Nachricht-----
>>Von: David Ward [mailto:david.ward@dotech.com]
>>Gesendet: Dienstag, 28. Januar 2003 21:12
>>An: jboss-user@lists.sourceforge.net
>>Betreff: [JBoss-user] help clearing a single user from authentication
>>cache
>>
>>
>>Using JDK 1.4.1_01, jboss-3.0.4_tomca-tomcat-4.1.2 on Linux.
>>
>>I'm trying to clear from the authentication cache JUST a single user.
>>Invoking flushAuthenticationCache(String) on the mbean works fine, but
>>it flushes *all* users' security infos.
>>
>>I want to call the CachePolicy's remove(Principal) method, so I tried
>>looking up the CachePolicy in JNDI and calling it. Though I found a
>>TimedCachePolicy in jndi under java:/timedCacheFactory/docs (docs is our
>>app's security name), and called the remove(Principal) method
>>successfully, it doesn't seem to do anything.
>>
>>Then, I tried extending JaasSecurityManagerService, configuring the use
>>of my class in jboss-service.xml. I see it in the JMX-Console, but for
>>some reason my added method isn't showing up there (under list mbean
>>operations), and I don't know how to register an MBean interface to
>>expose it.
>>
>>Please help. Again, my end goal is to flush the authentication cache
>>for just a single user. Unfortunately, there's not a public, exposed
>>method in the JaasSecurityManagerService that does this.
>>
>>Also, below is some output from the jmx console JNDIView.
>>
>>- What's up with the "Failed to lookup: timedCacheFactory?"
>>
>>- When I looked up the timedCacheFactory, it's actually a $Proxy class
>>(EJB?)
>>
>>- java:jaas/docs says it's a SecurityDomainContext below, but when I
>>look it up in code, I get a ClassCastException saying it's *really* a
>>JaasSecurityManager! Why the descrepency? If it *was* actually a
>>SecurityDomainContext, I could call
>>sdc.getAuthenticationCache().remove(new SimplePrincipal("username"))!
>>
>>Thanks again,
>>David
>>
>>java: Namespace
>>
>> +- DefaultDS (class:
>>org.jboss.resource.adapter.jdbc.local.LocalDataSource)
>> +- XAConnectionFactory (class: org.jboss.mq.SpyXAConnectionFactory)
>> +- SecurityProxyFactory (class:
>>org.jboss.security.SubjectSecurityProxyFactory)
>> +- DefaultJMSProvider (class: org.jboss.jms.jndi.JBossMQProvider)
>> +- CounterService (class: org.jboss.varia.counter.CounterService)
>> +- comp (class: javax.naming.Context)
>> +- JmsXA (class:
>
> org.jboss.resource.adapter.jms.JmsConnectionFactoryImpl)
>
>> +- ConnectionFactory (class: org.jboss.mq.SpyConnectionFactory)
>> +- jaas (class: javax.naming.Context)
>> | +- JmsXARealm (class:
>>org.jboss.security.plugins.SecurityDomainContext)
>> | +- jbossmq (class:
>
> org.jboss.security.plugins.SecurityDomainContext)
>
>> | +- docs (class: org.jboss.security.plugins.SecurityDomainContext)
>> +- timedCacheFactory (class: javax.naming.Context)
>>Failed to lookup: timedCacheFactory, errmsg=null
>> +- TransactionPropagationContextExporter (class:
>>org.jboss.tm.TransactionPropagationContextFactory)
>> +- Mail (class: javax.mail.Session)
>> +- StdJMSPool (class: org.jboss.jms.asf.StdServerSessionPoolFactory)
>> +- TransactionPropagationContextImporter (class:
>>org.jboss.tm.TransactionPropagationContextImporter)
>> +- DocsDS (class:
>
> org.jboss.resource.adapter.jdbc.local.LocalDataSource)
>
>> +- TransactionManager (class: org.jboss.tm.TxManager)
>>
>>
>
-------------------------------------------------------
This SF.NET email is sponsored by:
SourceForge Enterprise Edition + IBM + LinuxWorld http://www.vasoftware.com
_______________________________________________
JBoss-user mailing list
JBoss-user@lists.sourceforge.net
https://lists.sourceforge.net/lists/listinfo/jboss-user
[prev in list] [next in list] [prev in thread] [next in thread]
Configure |
About |
News |
Add a list |
Sponsored by KoreLogic